MEDIUM🇬🇧 English

CVE-2007-2199

CVSS 6.8v2.0pub. 2007-04-24upd. 2026-04-23

PHP remote file inclusion vulnerability in lib/pcltar.lib.php (aka pcltar.php) in the PclTar module 1.3 and 1.3.1 for Vincent Blavet PhpConcept Library, as used in multiple products including (1) Joomla! 1.5.0 Beta, (2) N/X Web Content Management System (WCMS) 4.5, (3) CJG EXPLORER PRO 3.3, and (4) phpSiteBackup 0.1, allows remote attackers to execute arbitrary PHP code via a URL in the g_pcltar_lib_dir parameter.

oryginał EN
CVSS Vector
AV:N/AC:M/Au:N/C:P/I:P/A:P
  • Cjg Explorer Pro

    APP
    Cjg Explorer Pro
    3.3
  • Joomla

    APP
    Joomla
    1.5.0
  • Nx N X Wcms

    APP
    Nx
    4.5
  • Phpsitebackup

    APP
    Phpsitebackup
    0.1
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2009-4789HIGH7.5ten sam produkt

Multiple PHP remote file inclusion vulnerabilities in the MojoBlog component RC 0.15 for Joomla! allow remote ...

CVE-2010-1470HIGH7.5ten sam produkt

Directory traversal vulnerability in the Web TV (com_webtv) component 1.0 for Joomla! allows remote attackers ...

CVE-2010-0694HIGH7.5ten sam produkt

SQL injection vulnerability in the PerchaGallery (com_perchagallery) component before 1.5b for Joomla! allows ...

CVE-2009-4599HIGH7.5ten sam produkt

Multiple SQL injection vulnerabilities in the JS Jobs (com_jsjobs) component 1.0.5.6 for Joomla! allow remote ...

CVE-2009-4604HIGH7.5ten sam produkt

PHP remote file inclusion vulnerability in mamboleto.php in the Fernando Soares Mamboleto (com_mamboleto) comp...