CVE-2007-2597

Name of the Vulnerable Software and Affected Versions telltarget CMS version 1.3.3

Description The issue allows remote attackers to execute arbitrary PHP code via a URL in several parameters, including the ordnertiefe parameter to site conf.php, and the tt docroot parameter to various PHP files in different directories, such as class.csv.php, produkte nach serie.php, ref kd rubrik.php, hg referenz jobgalerie.php, surfer anmeldung NWL.php, produkte nach serie alle.php, surfer aendern.php, referenz.php, 1/lay.php, and 3/lay.php. This can be achieved by manipulating the ordnertiefe and tt docroot parameters.

Recommendations For telltarget CMS version 1.3.3, consider disabling the ordnertiefe parameter to site conf.php and the tt docroot parameter to the affected PHP files until a patch is available. Restrict access to the vulnerable PHP files in the functionen/, module/, and standard/ directories to minimize the risk of exploitation. Avoid using the ordnertiefe and tt docroot parameters in the affected API endpoints until the issue is resolved.