← Volver a CVEs
CVE-2007-2199
N/ADescripcion
PHP remote file inclusion vulnerability in lib/pcltar.lib.php (aka pcltar.php) in the PclTar module 1.3 and 1.3.1 for Vincent Blavet PhpConcept Library, as used in multiple products including (1) Joomla! 1.5.0 Beta, (2) N/X Web Content Management System (WCMS) 4.5, (3) CJG EXPLORER PRO 3.3, and (4) phpSiteBackup 0.1, allows remote attackers to execute arbitrary PHP code via a URL in the g_pcltar_lib_dir parameter.
Detalles CVE
Puntuacion CVSS v3.1N/A
Publicado4/24/2007
Ultima modificacion4/23/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
cjg_explorer_pro:cjg_explorer_projoomla:joomlanx:n_x_wcmsphpsitebackup:phpsitebackup
Debilidades (CWE)
CWE-94
Referencias
http://osvdb.org/34803(cve@mitre.org)
http://osvdb.org/36009(cve@mitre.org)
http://secunia.com/advisories/25230(cve@mitre.org)
http://www.attrition.org/pipermail/vim/2007-May/001618.html(cve@mitre.org)
http://www.hackers.ir/advisories/joomla.html(cve@mitre.org)
http://www.securityfocus.com/archive/1/466687/100/0/threaded(cve@mitre.org)
http://www.securityfocus.com/archive/1/478503/100/0/threaded(cve@mitre.org)
http://www.securityfocus.com/bid/23613(cve@mitre.org)
http://www.securityfocus.com/bid/23708(cve@mitre.org)
http://www.securityfocus.com/bid/24660(cve@mitre.org)
http://www.securityfocus.com/bid/25528(cve@mitre.org)
http://www.vupen.com/english/advisories/2007/1511(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/33837(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/34273(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/35092(cve@mitre.org)
https://www.exploit-db.com/exploits/3781(cve@mitre.org)
https://www.exploit-db.com/exploits/3915(cve@mitre.org)
https://www.exploit-db.com/exploits/4111(cve@mitre.org)
http://osvdb.org/34803(af854a3a-2127-422b-91ae-364da2661108)
http://osvdb.org/36009(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/25230(af854a3a-2127-422b-91ae-364da2661108)
http://www.attrition.org/pipermail/vim/2007-May/001618.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.hackers.ir/advisories/joomla.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/466687/100/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/478503/100/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/23613(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/23708(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/24660(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/25528(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2007/1511(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/33837(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/34273(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/35092(af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/3781(af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/3915(af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/4111(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.