20 matches found
EUVD-2017-14320
Malware in sbrugna...
EUVD-2017-17970
Malware in sbrugna...
VulnCheck KEV: CVE-2017-5215
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution...
B2j Contact,2.0 and other,Other
B2j Contact,2.0 and other,Other Resolved by upgrading to 2.1.15...
Codextrous B2J Contact Extension Insecure File Access Vulnerability in Joomla!
Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other features . Codextrous B2J Contact aka b2jcontact is one of the plug-ins used to create a contact form . A security vulnerability exists i...
Codextrous B2J Contact Expands Remote Code Execution Vulnerability in Joomla!
Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other features . Codextrous B2J Contact aka b2jcontact is one of the plug-ins used to create a contact form . A security vulnerability exists i...
CVE-2017-5214
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows prediction of a uniqid value based on knowledge of a time value. This makes it easier to read arbitrary uploaded files...
CVE-2017-5215
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution...
Remote code execution
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution...
Code injection
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows prediction of a uniqid value based on knowledge of a time value. This makes it easier to read arbitrary uploaded files...
CVE-2017-9030
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files...
CVE-2017-5214
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows prediction of a uniqid value based on knowledge of a time value. This makes it easier to read arbitrary uploaded files...
CVE-2017-9030
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files...
CVE-2017-5215
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution...
Directory traversal
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files...
CVE-2017-5214
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows prediction of a uniqid value based on knowledge of a time value. This makes it easier to read arbitrary uploaded files...
CVE-2017-5215
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution...
CVE-2017-5215
The CVE entries describe the Codextrous B2J Contact (aka b2j_contact) Joomla extension up to version 2.1.13 as vulnerable. CVE-2017-5215: a rename attack allows bypass of the safe file extension protection, enabling remote code execution. CVE-2017-9030: a directory traversal flaw bypasses uniqid ...
CVE-2017-9030
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files...
CVE-2017-9030
CVE-2017-9030 affects the Codextrous B2J Contact (b2j_contact) Joomla! extension prior to version 2.1.13. The flaw is a directory traversal that bypasses a uniqid protection, enabling reading arbitrary uploaded files. Multiple sources (CNVD, RH, NVD) confirm the issue and its potential for remote...