← Back

Igeneric

igeneric

6 CVEs • 3 products

Products (3)

Click to collapse
Toggle
Ig Shop
ig_shop
4 CVEs
Free Shopping Cart
free_shopping_cart
1 CVE
Ig Calendar
ig_calendar
1 CVE

CVEs (6)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2007-2717
1Igeneric
1Ig Shop
Apr 23, 2026
May 16, 2007
N/A· v4
N/A· v3
7.5 HIGH· v2
SQL injection vulnerability in shop/page.php in iGeneric (iG) Shop 1.4 allows remote attackers to execute arbitrary SQL commands via the type_id[] parameter, a different vector than CVE-2005-0537.
CVE-2007-0134
1Igeneric
1Ig Shop
Apr 23, 2026
Jan 9, 2007
N/A· v4
N/A· v3
7.5 HIGH· v2
Multiple eval injection vulnerabilities in iGeneric iG Shop 1.0 allow remote attackers to execute arbitrary code via the action parameter, which is supplied to an eval function call in (1) cart.php and (2) page.php. NOT...Show more
Multiple eval injection vulnerabilities in iGeneric iG Shop 1.0 allow remote attackers to execute arbitrary code via the action parameter, which is supplied to an eval function call in (1) cart.php and (2) page.php. NOTE: a later report and CVE analysis indicate that the vulnerability is present in 1.4.Show less
CVE-2007-0133
1Igeneric
1Ig Shop
Apr 23, 2026
Jan 9, 2007
N/A· v4
N/A· v3
7.5 HIGH· v2
Multiple SQL injection vulnerabilities in display_review.php in iGeneric iG Shop 1.4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) user_login_cookie parameter.
CVE-2007-0132
1Igeneric
1Ig Shop
Apr 23, 2026
Jan 9, 2007
N/A· v4
N/A· v3
7.5 HIGH· v2
SQL injection vulnerability in compare_product.php in iGeneric iG Shop 1.4 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2007-0130
1Igeneric
1Ig Calendar
Apr 23, 2026
Jan 9, 2007
N/A· v4
N/A· v3
7.5 HIGH· v2
SQL injection vulnerability in user.php in iGeneric iG Calendar 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2005-0537
1Igeneric
1Free Shopping Cart
Apr 16, 2026
Feb 21, 2005
N/A· v4
N/A· v3
7.5 HIGH· v2
Multiple SQL injection vulnerabilities in page.php for iGeneric (iG) Shop 1.2 may allow remote attackers to execute arbitrary SQL statements via the (1) cats, (2) l_price, or (3) u_price parameters.