CVE-2017-5215 in B2J Contact Extensioninfo

Summary

The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

01/09/2017

Disclosure

05/17/2017

Moderation

VulDB entry created

Entries

VDB-101442 (1)

CPE

ready

CWE

CWE-20 (Confirmed)

CVSS

8.5

EPSS

0.00203

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-5215
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-5215
CVE Details	https://www.cvedetails.com/cve/CVE-2017-5215/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!