Launch Week Day 1: Announcing Security Design Review
Start for Free
rubygems

camaleon_cms

View on rubygems registry
16 Total advisories
16 Vulnerabilities
0 Malware

Vulnerabilities

MEDIUM 6.5
RubyGems

CVE-2026-1776

Camaleon CMS vulnerable to Path Traversal through AWS S3 uploader implementation
UNKNOWN
RubyGems

GHSA-3hp8-6j24-m5gm

Duplicate Advisory: Camaleon CMS vulnerable to remote code execution through code injection (GHSL-2024-185)
HIGH 7.2
RubyGems

GHSA-7x4w-cj9r-h4v9

Camaleon CMS vulnerable to remote code execution through code injection (GHSL-2024-185)
MEDIUM 6.5
RubyGems

CVE-2024-46987

Camaleon CMS vulnerable to arbitrary path traversal (GHSL-2024-183)
HIGH 8.8
RubyGems

CVE-2024-46986

Camaleon CMS affected by arbitrary file write to RCE (GHSL-2024-182)
UNKNOWN
RubyGems

CVE-2025-2304

Camaleon CMS Vulnerable to Privilege Escalation through a Mass Assignment
MEDIUM 5.4
RubyGems

GHSA-75j2-9gmc-m855

Camaleon CMS vulnerable to stored XSS through user file upload (GHSL-2024-184)
MEDIUM 5.4
RubyGems

GHSA-8fx8-3rg2-79xw

Camaleon CMS vulnerable to stored XSS through user file upload (GHSL-2024-184)
MEDIUM 5.4
RubyGems

GHSA-r9cr-qmfw-pmrc

Camaleon CMS vulnerable to stored XSS through user file upload (GHSL-2024-184)
MEDIUM 4.8
RubyGems

CVE-2024-48652

camaleon_cms affected by cross site scripting
CRITICAL 9.8
RubyGems

CVE-2023-30145

Server-Side Template Injection in Camaleon CMS
MEDIUM 4.9
RubyGems

CVE-2021-25972

Camaleon CMS vulnerable to Server-Side Request Forgery
MEDIUM 4.3
RubyGems

CVE-2021-25971

Camaleon CMS vulnerable to Uncaught Exception
HIGH 8.8
RubyGems

CVE-2021-25970

Camaleon CMS Insufficient Session Expiration vulnerability
MEDIUM 6.1
RubyGems

CVE-2021-25969

Camaleon CMS Stored Cross-site Scripting vulnerability
MEDIUM 6.1
RubyGems

CVE-2018-18260

Camaleon CMS vulnerable to Stored Cross-site Scripting

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes