CVE-2007-2199

Name of the Vulnerable Software and Affected Versions PclTar module versions 1.3 and 1.3.1 Joomla! version 1.5.0 Beta N/X Web Content Management System (WCMS) version 4.5 CJG EXPLORER PRO version 3.3 phpSiteBackup version 0.1

Description The issue allows remote attackers to execute arbitrary PHP code via a URL in the g pcltar lib dir parameter. This can be exploited by providing a malicious URL, potentially leading to code execution on the vulnerable system.

Recommendations For PclTar module versions 1.3 and 1.3.1, consider disabling the lib/pcltar.lib.php file until a patch is available. For Joomla! version 1.5.0 Beta, restrict access to the PclTar module to minimize the risk of exploitation. For N/X Web Content Management System (WCMS) version 4.5, avoid using the g pcltar lib dir parameter in the affected API endpoint until the issue is resolved. For CJG EXPLORER PRO version 3.3, temporarily disable the PclTar module to prevent potential exploitation. For phpSiteBackup version 0.1, restrict access to the lib/pcltar.lib.php file to minimize the risk of exploitation.