Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/78633?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78633?format=api", "vulnerability_id": "VCID-jcrg-ej53-zfeg", "summary": "Camaleon CMS versions 2.4.5.0 through 2.9.0, prior to commit f54a77e, contain a path traversal vulnerability in the AWS S3 uploader implementation that allows authenticated users to read arbitrary files from the web server’s filesystem. The issue occurs in the download_private_file functionality when the application is configured to use the CamaleonCmsAwsUploader backend. Unlike the local uploader implementation, the AWS uploader does not validate file paths with valid_folder_path?, allowing directory traversal sequences to be supplied via the file parameter. As a result, any authenticated user, including low-privileged registered users, can access sensitive files such as /etc/passwd. This issue represents a bypass of the incomplete fix for CVE-2024-46987 and affects deployments using the AWS S3 storage backend.", "aliases": [ { "alias": "CVE-2026-1776" }, { "alias": "GHSA-jw5g-f64p-6x78" } ], "fixed_packages": [], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397007?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/40444?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jcrg-ej53-zfeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/519666?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/519667?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/519668?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/519669?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/519670?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/519671?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/519672?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/519673?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/519674?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/519675?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/519676?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/519677?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/519678?format=api", "purl": "pkg:gem/camaleon_cms@2.4.5.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.5.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/519679?format=api", "purl": "pkg:gem/camaleon_cms@2.4.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/519680?format=api", "purl": "pkg:gem/camaleon_cms@2.4.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/519681?format=api", "purl": "pkg:gem/camaleon_cms@2.4.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/519682?format=api", "purl": "pkg:gem/camaleon_cms@2.4.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/519683?format=api", "purl": "pkg:gem/camaleon_cms@2.4.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.6.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/519684?format=api", "purl": "pkg:gem/camaleon_cms@2.4.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/519685?format=api", "purl": "pkg:gem/camaleon_cms@2.4.6.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.6.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/519686?format=api", "purl": "pkg:gem/camaleon_cms@2.4.6.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.6.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/519687?format=api", "purl": "pkg:gem/camaleon_cms@2.4.6.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.6.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/519688?format=api", "purl": "pkg:gem/camaleon_cms@2.4.6.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.4.6.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/519689?format=api", "purl": "pkg:gem/camaleon_cms@2.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/519690?format=api", "purl": "pkg:gem/camaleon_cms@2.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/519691?format=api", "purl": "pkg:gem/camaleon_cms@2.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.5.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/519692?format=api", "purl": "pkg:gem/camaleon_cms@2.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/519693?format=api", "purl": "pkg:gem/camaleon_cms@2.5.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.5.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/391812?format=api", "purl": "pkg:gem/camaleon_cms@2.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/23724?format=api", "purl": "pkg:gem/camaleon_cms@2.6.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.6.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/630022?format=api", "purl": "pkg:gem/camaleon_cms@2.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/630023?format=api", "purl": "pkg:gem/camaleon_cms@2.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/630024?format=api", "purl": "pkg:gem/camaleon_cms@2.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2fb5-j67a-1qd4" }, { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-a557-bzmu-pyes" }, { "vulnerability": "VCID-ct7g-eb5v-sbcg" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-tq4s-2hvk-7ydh" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/630025?format=api", "purl": "pkg:gem/camaleon_cms@2.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.6.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/393551?format=api", "purl": "pkg:gem/camaleon_cms@2.7.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/393552?format=api", "purl": "pkg:gem/camaleon_cms@2.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/744245?format=api", "purl": "pkg:gem/camaleon_cms@2.7.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.7.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/744246?format=api", "purl": "pkg:gem/camaleon_cms@2.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-jqb3-jybp-nbfn" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.7.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/381953?format=api", "purl": "pkg:gem/camaleon_cms@2.7.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.7.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/744247?format=api", "purl": "pkg:gem/camaleon_cms@2.7.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-n9wa-nusj-kba5" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.7.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/33456?format=api", "purl": "pkg:gem/camaleon_cms@2.8.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5b2p-u2bg-h7dq" }, { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9pwj-kwvj-rkdf" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" }, { "vulnerability": "VCID-m6vs-j86s-dud3" }, { "vulnerability": "VCID-s4kg-6wpn-fke4" }, { "vulnerability": "VCID-v1vd-3v7v-8qht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.8.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/33457?format=api", "purl": "pkg:gem/camaleon_cms@2.8.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.8.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/33559?format=api", "purl": "pkg:gem/camaleon_cms@2.8.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.8.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/787534?format=api", "purl": "pkg:gem/camaleon_cms@2.8.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-6vu4-jbn6-mqh9" }, { "vulnerability": "VCID-9wt5-cqus-d3bm" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.8.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/787535?format=api", "purl": "pkg:gem/camaleon_cms@2.9.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5gks-ge3p-tya5" }, { "vulnerability": "VCID-jcrg-ej53-zfeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.9.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/40445?format=api", "purl": "pkg:gem/camaleon_cms@2.9.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jcrg-ej53-zfeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/camaleon_cms@2.9.1" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-1776", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.23083", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.23062", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22876", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.23073", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-1776" }, { "reference_url": "https://camaleon.website", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6.0", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://camaleon.website" }, { "reference_url": "https://github.com/owen2345/camaleon-cms/pull/1127", "reference_id": "1127", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "6.0", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-10T14:57:09Z/" } ], "url": "https://github.com/owen2345/camaleon-cms/pull/1127" }, { "reference_url": "https://www.vulncheck.com/advisories/camaleon-cms-aws-uploader-authenticated-path-traversal-arbitrary-file-read", "reference_id": "camaleon-cms-aws-uploader-authenticated-path-traversal-arbitrary-file-read", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "6.0", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-10T14:57:09Z/" } ], "url": "https://www.vulncheck.com/advisories/camaleon-cms-aws-uploader-authenticated-path-traversal-arbitrary-file-read" }, { "reference_url": "https://camaleon.website/", "reference_id": "camaleon.website", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-10T14:57:09Z/" } ], "url": "https://camaleon.website/" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-1776", "reference_id": "CVE-2026-1776", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6.0", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-1776" }, { "reference_url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/camaleon_cms/CVE-2026-1776.yml", "reference_id": "CVE-2026-1776.YML", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6.0", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/camaleon_cms/CVE-2026-1776.yml" }, { "reference_url": "https://github.com/owen2345/camaleon-cms/commit/f54a77e2a7be601215ea1b396038c589a0cab9af", "reference_id": "f54a77e2a7be601215ea1b396038c589a0cab9af", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "6.0", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-10T14:57:09Z/" } ], "url": "https://github.com/owen2345/camaleon-cms/commit/f54a77e2a7be601215ea1b396038c589a0cab9af" }, { "reference_url": "https://github.com/advisories/GHSA-jw5g-f64p-6x78", "reference_id": "GHSA-jw5g-f64p-6x78", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-jw5g-f64p-6x78" } ], "weaknesses": [ { "cwe_id": 22, "name": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", "description": "The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." } ], "exploits": [], "severity_range_score": "4.0 - 6.9", "exploitability": "0.5", "weighted_severity": "6.2", "risk_score": 3.1, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jcrg-ej53-zfeg" }