Vulnerabilities > Codextrous

DATE	CVE	VULNERABILITY TITLE	RISK
2017-05-17	CVE-2017-9030	Path Traversal vulnerability in Codextrous B2J Contact 2.1.12 The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files. network low complexity codextrous CWE-22	7.5
2017-05-17	CVE-2017-5215	Improper Input Validation vulnerability in Codextrous B2J Contact 2.1.12 The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution. network low complexity codextrous CWE-20 critical	9.8
2017-05-17	CVE-2017-5214	Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Codextrous B2J Contact 2.1.12 The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows prediction of a uniqid value based on knowledge of a time value. network low complexity codextrous CWE-335	7.5

Vulnerabilities > Codextrous {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Codextrous"}]}