NVD

Id
86157  
Name
CVE-2017-9030  
Description
The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-05-27  
Published
2017-05-17  
Modified Date
2017-05-26  
Seq
2017-9030  

Actions

Related NVD References

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
67908 JVNDB-2017-004190 Joomla! 用 Codextrous B2J Contact エクステンションにおけるパストラバーサルの脆弱性 Joomla! 用 Codextrous B2J Contact (別名 b2j_contact) エクステンションには、パストラバーサルの脆弱性が存在します。 CVE-2017-9030 0 CVE-2017-9030 86157 5 7.5 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-004190.html 2017-05-08 2017-06-19 View