2 matches found
Joomla Codextrous B2jcontact 2.1.17 Shell Upload
Exploit Title : Joomla Codextrous ComB2jcontact Components 2.1.17 Shell Upload Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 04/01/2019 Vendor Homepage : codextrous.com/joomla-components/b2j-contact.html + extensions.joomla.org/extension/b2j-contact/ Software...
CVE-2017-5215
The CVE entries describe the Codextrous B2J Contact (aka b2j_contact) Joomla extension up to version 2.1.13 as vulnerable. CVE-2017-5215: a rename attack allows bypass of the safe file extension protection, enabling remote code execution. CVE-2017-9030: a directory traversal flaw bypasses uniqid ...