CVE-2007-2199

Exploitation Summary

EIP tracks 3 public exploits for CVE-2007-2199. PoCs published by GoLd_M, Mogatil, Omid.

AI-analyzed exploit summary This exploit demonstrates a Remote File Include (RFI) vulnerability in phpSiteBackup 0.1 via the `g_pcltar_lib_dir` parameter in `pcltar.lib.php`. An attacker can include arbitrary remote files by manipulating the parameter to point to a malicious URL.

Description

PHP remote file inclusion vulnerability in lib/pcltar.lib.php (aka pcltar.php) in the PclTar module 1.3 and 1.3.1 for Vincent Blavet PhpConcept Library, as used in multiple products including (1) Joomla! 1.5.0 Beta, (2) N/X Web Content Management System (WCMS) 4.5, (3) CJG EXPLORER PRO 3.3, and (4) phpSiteBackup 0.1, allows remote attackers to execute arbitrary PHP code via a URL in the g_pcltar_lib_dir parameter.

Exploits (3)

exploitdb WORKING POC VERIFIED

by GoLd_M · textwebappsphp

https://www.exploit-db.com/exploits/4111

View Code ZIP pw:eip

This exploit demonstrates a Remote File Include (RFI) vulnerability in phpSiteBackup 0.1 via the `g_pcltar_lib_dir` parameter in `pcltar.lib.php`. An attacker can include arbitrary remote files by manipulating the parameter to point to a malicious URL.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: phpSiteBackup 0.1

No auth needed

Prerequisites: Remote file inclusion must be enabled on the target server · Attacker-controlled server hosting malicious file

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Mogatil · textwebappsphp

https://www.exploit-db.com/exploits/3915

View Code ZIP pw:eip

This exploit demonstrates a remote file inclusion vulnerability in CJG Explorer Pro v3.2 due to improper input validation in the `g_pcltar_lib_dir` parameter in `pcltar.lib.php` and `pcltrace.lib.php`. An attacker can include arbitrary remote files, potentially leading to remote code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: CJG Explorer Pro v3.2

No auth needed

Prerequisites: Network access to the target application · PHP remote file inclusion enabled on the server

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Omid · textwebappsphp

https://www.exploit-db.com/exploits/3781

View Code ZIP pw:eip

This exploit demonstrates a remote file inclusion vulnerability in Joomla! 1.5.0 Beta due to improper input validation in the `g_pcltar_lib_dir` parameter in `/libraries/pcl/pcltar.php`. An attacker can include arbitrary remote files by manipulating the parameter.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Joomla! 1.5.0 Beta

No auth needed

Prerequisites: Joomla! 1.5.0 Beta installation · Remote file inclusion must be enabled on the server

MITRE ATT&CK