CVE-2007-0134

iGeneric iG Shop 1.0 - Remote Code Execution via Action Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-0134. PoCs published by Michael Brooks.

AI-analyzed exploit summary This exploit demonstrates an eval injection vulnerability in ig-shop, allowing arbitrary PHP code execution via the 'action' parameter in cart.php and page.php. It also includes SQL injection examples to dump credit card numbers and user logins.

Description

Multiple eval injection vulnerabilities in iGeneric iG Shop 1.0 allow remote attackers to execute arbitrary code via the action parameter, which is supplied to an eval function call in (1) cart.php and (2) page.php. NOTE: a later report and CVE analysis indicate that the vulnerability is present in 1.4.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Michael Brooks · textwebappsphp

https://www.exploit-db.com/exploits/3083

View Code ZIP pw:eip

This exploit demonstrates an eval injection vulnerability in ig-shop, allowing arbitrary PHP code execution via the 'action' parameter in cart.php and page.php. It also includes SQL injection examples to dump credit card numbers and user logins.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: ig-shop (version not specified)

No auth needed

Prerequisites: Access to the vulnerable ig-shop application

MITRE ATT&CK