Codextrous B2j Contact — known CVE vulnerabilities
Every CVE whose affected-product data names Codextrous B2j Contact, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2017-5215 — CVSS 9.8 (critical): The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file…
CVE-2017-5214 — CVSS 7.5 (high): The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows prediction of a uniqid value based on knowledge of…
CVE-2017-9030 — CVSS 7.5 (high): The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid…