CVE-2007-3082

sendcard < 3.4.1 - Directory Traversal via sc_language Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-3082. PoCs published by Silentz.

AI-analyzed exploit summary This exploit targets a remote code execution vulnerability in Sendcard <= 3.4.1 by injecting PHP code into log files via a crafted HTTP request. It then attempts to execute arbitrary commands by referencing the log file through a path traversal vulnerability.

Description

Directory traversal vulnerability in sendcard.php in Sendcard 3.4.1 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the sc_language parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Silentz · phpwebappsphp

https://www.exploit-db.com/exploits/4029

View Code ZIP pw:eip

This exploit targets a remote code execution vulnerability in Sendcard <= 3.4.1 by injecting PHP code into log files via a crafted HTTP request. It then attempts to execute arbitrary commands by referencing the log file through a path traversal vulnerability.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Sendcard <= 3.4.1

No auth needed

Prerequisites: Target must have Sendcard <= 3.4.1 installed · Web server must have write permissions on log files · PHP must be configured to allow file inclusion

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →