3 matches found
CVE-2017-9030
The Codextrous B2J Contact aka b2jcontact extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files...
Joomla Codextrous B2jcontact 2.1.17 Shell Upload
Exploit Title : Joomla Codextrous ComB2jcontact Components 2.1.17 Shell Upload Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 04/01/2019 Vendor Homepage : codextrous.com/joomla-components/b2j-contact.html + extensions.joomla.org/extension/b2j-contact/ Software...
CVE-2017-9030
CVE-2017-9030 affects the Codextrous B2J Contact (b2j_contact) Joomla! extension prior to version 2.1.13. The flaw is a directory traversal that bypasses a uniqid protection, enabling reading arbitrary uploaded files. Multiple sources (CNVD, RH, NVD) confirm the issue and its potential for remote...