CVE-2006-3836

EPSS 3.4%

Directory traversal vulnerability in index.php in UNIDOmedia Chameleon LE 1.203 and earlier, and possibly Chameleon PRO, allows remote attackers to read arbitrary files via the rmid parameter.

Affected products

n/a · n/a

public PoCs found — 1

exploitdbwww.exploit-db.com/exploits/28255unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/21156 http://securityreason.com/securityalert/1280 https://exchange.xforce.ibmcloud.com/vulnerabilities/27898 http://www.securityfocus.com/archive/1/440765/100/0/threaded http://www.securityfocus.com/bid/19107 http://www.vupen.com/english/advisories/2006/2948