B2j Contact@* Security Vulnerabilities and Issues — B2j Contact@* CVE List

Lucene search

CodextrousB2j Contact*

3 matches found

CVE•added 2017/05/17 2:29 p.m.•51 views

CVE-2017-5215

The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution.

9.8CVSS9.7AI score0.00217EPSS

CVE•added 2017/05/17 2:29 p.m.•44 views

CVE-2017-5214

The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows prediction of a uniqid value based on knowledge of a time value. This makes it easier to read arbitrary uploaded files.

7.5CVSS7.4AI score0.003EPSS

CVE•added 2017/05/17 2:29 p.m.•43 views

CVE-2017-9030

The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files.

7.5CVSS7.4AI score0.02076EPSS