19 matches found
EUVD-2017-17970
Malware in sbrugna...
EUVD-2017-14320
Malware in sbrugna...
VulnCheck KEV: CVE-2017-5215
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution...
Joomla Codextrous B2jcontact 2.1.17 Shell Upload
Exploit Title : Joomla Codextrous ComB2jcontact Components 2.1.17 Shell Upload Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 04/01/2019 Vendor Homepage : codextrous.com/joomla-components/b2j-contact.html + extensions.joomla.org/extension/b2j-contact/ Software...
Codextrous B2J Contact Extension Insecure File Access Vulnerability in Joomla!
Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other features . Codextrous B2J Contact aka b2jcontact is one of the plug-ins used to create a contact form . A security vulnerability exists i...
Codextrous B2J Contact Expands Remote Code Execution Vulnerability in Joomla!
Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other features . Codextrous B2J Contact aka b2jcontact is one of the plug-ins used to create a contact form . A security vulnerability exists i...
Unspecified Vulnerability in Codextrous B2J Contact Extension for Joomla!
Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other features . Codextrous B2J Contact aka b2jcontact is one of the plug-ins used to create a contact form . A security vulnerability exists i...
CVE-2017-5215
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution...
CVE-2017-9030
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files...
CVE-2017-9030
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files...
CVE-2017-5214
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows prediction of a uniqid value based on knowledge of a time value. This makes it easier to read arbitrary uploaded files...
Code injection
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows prediction of a uniqid value based on knowledge of a time value. This makes it easier to read arbitrary uploaded files...
Remote code execution
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution...
Directory traversal
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files...
CVE-2017-9030
CVE-2017-9030 affects the Codextrous B2J Contact (b2j_contact) Joomla! extension prior to version 2.1.13. The flaw is a directory traversal that bypasses a uniqid protection, enabling reading arbitrary uploaded files. Multiple sources (CNVD, RH, NVD) confirm the issue and its potential for remote...
CVE-2017-9030
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files...
CVE-2017-5214
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows prediction of a uniqid value based on knowledge of a time value. This makes it easier to read arbitrary uploaded files...
CVE-2017-5215
The CVE entries describe the Codextrous B2J Contact (aka b2j_contact) Joomla extension up to version 2.1.13 as vulnerable. CVE-2017-5215: a rename attack allows bypass of the safe file extension protection, enabling remote code execution. CVE-2017-9030: a directory traversal flaw bypasses uniqid ...
CVE-2017-5215
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution...