pkg:gem/camaleon_cms
Type
gem
Name
camaleon_cms
Known advisories, vulnerabilities and fixes for camaleon_cms package.
- Repository
- https://rubygems.org/gems/camaleon_cms
Critical
1
High
1
Medium
4
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | = 2.4 |
CVE-2018-18260
|
 RUBYSEC:CAMALEON_CMS-2018-18260
|
Camaleon CMS vulnerable to Stored Cross-site Scripting | medium |
2022-05-13T00:00:00
(2 years ago) |
|
| Unaffected | < 2.4 |
CVE-2018-18260
|
RUBYSEC:CAMALEON_CMS-2018-18260
|
Camaleon CMS vulnerable to Stored Cross-site Scripting | medium |
2022-05-13T00:00:00
(2 years ago) |
|
| Affected | < 2.6.0.1 = 0.0.1 |
CVE-2021-25969
|
RUBYSEC:CAMALEON_CMS-2021-25969
|
Camaleon CMS Stored Cross-site Scripting vulnerability | medium |
2022-05-24T00:00:00
(2 years ago) |
|
| Fixed | >= 2.6.0.1 |
CVE-2021-25969
|
RUBYSEC:CAMALEON_CMS-2021-25969
|
Camaleon CMS Stored Cross-site Scripting vulnerability | medium |
2022-05-24T00:00:00
(2 years ago) |
|
| Unaffected | < 0.0.1 |
CVE-2021-25969
|
RUBYSEC:CAMALEON_CMS-2021-25969
|
Camaleon CMS Stored Cross-site Scripting vulnerability | medium |
2022-05-24T00:00:00
(2 years ago) |
|
| Affected | < 2.6.0.1 = 0.1.7 |
CVE-2021-25970
|
RUBYSEC:CAMALEON_CMS-2021-25970
|
Camaleon CMS Insufficient Session Expiration vulnerability | high |
2022-05-24T00:00:00
(2 years ago) |
|
| Fixed | >= 2.6.0.1 |
CVE-2021-25970
|
RUBYSEC:CAMALEON_CMS-2021-25970
|
Camaleon CMS Insufficient Session Expiration vulnerability | high |
2022-05-24T00:00:00
(2 years ago) |
|
| Unaffected | < 0.1.7 |
CVE-2021-25970
|
RUBYSEC:CAMALEON_CMS-2021-25970
|
Camaleon CMS Insufficient Session Expiration vulnerability | high |
2022-05-24T00:00:00
(2 years ago) |
|
| Affected | < 2.6.0.1 = 2.0.1 |
CVE-2021-25971
|
RUBYSEC:CAMALEON_CMS-2021-25971
|
Camaleon CMS vulnerable to Uncaught Exception | medium |
2022-05-24T00:00:00
(2 years ago) |
|
| Fixed | >= 2.6.0.1 |
CVE-2021-25971
|
RUBYSEC:CAMALEON_CMS-2021-25971
|
Camaleon CMS vulnerable to Uncaught Exception | medium |
2022-05-24T00:00:00
(2 years ago) |
|
| Unaffected | < 2.0.1 |
CVE-2021-25971
|
RUBYSEC:CAMALEON_CMS-2021-25971
|
Camaleon CMS vulnerable to Uncaught Exception | medium |
2022-05-24T00:00:00
(2 years ago) |
|
| Affected | < 2.6.0.1 = 2.1.2.0 |
CVE-2021-25972
|
RUBYSEC:CAMALEON_CMS-2021-25972
|
Camaleon CMS vulnerable to Server-Side Request Forgery | medium |
2022-05-24T00:00:00
(2 years ago) |
|
| Fixed | >= 2.6.0.1 |
CVE-2021-25972
|
RUBYSEC:CAMALEON_CMS-2021-25972
|
Camaleon CMS vulnerable to Server-Side Request Forgery | medium |
2022-05-24T00:00:00
(2 years ago) |
|
| Unaffected | < 2.1.2.0 |
CVE-2021-25972
|
RUBYSEC:CAMALEON_CMS-2021-25972
|
Camaleon CMS vulnerable to Server-Side Request Forgery | medium |
2022-05-24T00:00:00
(2 years ago) |
|
| Affected | < 2.7.4 |
CVE-2023-30145
|
RUBYSEC:CAMALEON_CMS-2023-30145
|
Server-Side Template Injection in Camaleon CMS | critical |
2023-05-26T00:00:00
(16 months ago) |
|
| Fixed | >= 2.7.4 |
CVE-2023-30145
|
RUBYSEC:CAMALEON_CMS-2023-30145
|
Server-Side Template Injection in Camaleon CMS | critical |
2023-05-26T00:00:00
(16 months ago) |