Unrated severityNVD Advisory· Published Jan 9, 2007· Updated Jun 16, 2026
CVE-2007-0134
CVE-2007-0134
Description
Multiple eval injection vulnerabilities in iGeneric iG Shop 1.0 allow remote attackers to execute arbitrary code via the action parameter, which is supplied to an eval function call in (1) cart.php and (2) page.php. NOTE: a later report and CVE analysis indicate that the vulnerability is present in 1.4.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
11- packetstormsecurity.nl/0701-exploits/igshop10-multiple.txtnvdExploit
- secunia.com/advisories/23604nvdVendor Advisory
- www.vupen.com/english/advisories/2007/0056nvdVendor Advisory
- osvdb.org/33387nvd
- osvdb.org/33388nvd
- www.attrition.org/pipermail/vim/2007-June/001664.htmlnvd
- www.securityfocus.com/archive/1/456043/100/0/threadednvd
- www.securityfocus.com/archive/1/471722/100/0/threadednvd
- www.securityfocus.com/bid/21875nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/31301nvd
- www.exploit-db.com/exploits/3083nvd
News mentions
0No linked articles in our index yet.