Chameleon CMS
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-52459 | Hig | 0.46 | 7.1 | 0.00 | Dec 2, 2024 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chameleoni Chameleoni Jobs chameleon-jobs allows Reflected XSS.This issue affects Chameleoni Jobs: from n/a through <= 2.5.4. | ||
| CVE-2007-3050 | 0.00 | — | 0.02 | Jun 6, 2007 | Session fixation vulnerability in chameleon cms 3.0 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter. | |||
| CVE-1999-0261 | 0.00 | — | 0.01 | Mar 1, 1999 | Netmanager Chameleon SMTPd has several buffer overflows that cause a crash. |
- risk 0.46cvss 7.1epss 0.00
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chameleoni Chameleoni Jobs chameleon-jobs allows Reflected XSS.This issue affects Chameleoni Jobs: from n/a through <= 2.5.4.
- CVE-2007-3050Jun 6, 2007risk 0.00cvss —epss 0.02
Session fixation vulnerability in chameleon cms 3.0 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
- CVE-1999-0261Mar 1, 1999risk 0.00cvss —epss 0.01
Netmanager Chameleon SMTPd has several buffer overflows that cause a crash.