Lucene search
China National Vulnerability DatabaseCNVD-2021-103652HistoryOct 24, 2021 - 12:00 a.m.
CamaleonCMS server-side request forgery vulnerability
2021-10-2400:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
camaleon cms
server-side request forgery
rubyonrails-based
vulnerability
user input
exploit
intranet resources
cnvd
EPSS
0.001
Percentile
27.0%
Camaleon CMS is a RubyonRails-based advanced dynamic content management system (CMS) from the Camaleon CMS team. Camaleon CMS has a server-side request forgery vulnerability in versions 2.1.2.0 through 2.6.0, which stems from the product’s failure to properly validate user input and can be exploited by attackers to probe server intranet resources.
Related
rubygems
rubygems
Camaleon CMS vulnerable to Server-Side Request Forgery
2022-05-23 21:00:00
github
github
Camaleon CMS vulnerable to Server-Side Request Forgery
2022-05-24 19:18:04
cve
cve
CVE-2021-25972
2021-10-20 12:15:07
osv
osv
Camaleon CMS vulnerable to Server-Side Request Forgery
2022-05-24 19:18:04
CVE-2021-25972
2021-10-20 12:15:07
prion
prion
Server side request forgery (ssrf)
2021-10-20 12:15:00
cvelist
cvelist
nvd
nvd
CVE-2021-25972
2021-10-20 12:15:07