Description
Directory traversal vulnerability in index.php in UNIDOmedia Chameleon LE 1.203 and earlier, and possibly Chameleon PRO, allows remote attackers to read arbitrary files via the rmid parameter.
Exploits (1)
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/440765/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/27898
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/2948
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/19107
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/1280
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/21156
Scores
EPSS
0.0728
EPSS Percentile
91.7%
Details
Status
published
Products (1)
unidomedia/chameleon_le
< 1.203
Published
Jul 25, 2006
Tracked Since
Feb 18, 2026