Ig Shop@1.4 Security Vulnerabilities and Issues — Ig Shop@1.4 CVE List

Lucene search

IgenericIg Shop1.4

3 matches found

CVE•added 2007/05/16 7:28 p.m.•39 views

CVE-2007-2717

SQL injection vulnerability in shop/page.php in iGeneric (iG) Shop 1.4 allows remote attackers to execute arbitrary SQL commands via the type_id[] parameter, a different vector than CVE-2005-0537.

7.5CVSS8.3AI score0.00487EPSS

CVE•added 2007/01/09 11:28 a.m.•37 views

CVE-2007-0134

Multiple eval injection vulnerabilities in iGeneric iG Shop 1.0 allow remote attackers to execute arbitrary code via the action parameter, which is supplied to an eval function call in (1) cart.php and (2) page.php. NOTE: a later report and CVE analysis indicate that the vulnerability is present in...

7.5CVSS7.9AI score0.20168EPSS

CVE•added 2007/01/09 11:28 a.m.•34 views

CVE-2007-0132

SQL injection vulnerability in compare_product.php in iGeneric iG Shop 1.4 allows remote attackers to execute arbitrary SQL commands via the id parameter.

7.5CVSS8.4AI score0.01537EPSS