2 matches found
CVE-2021-25971
In Camaleon CMS, versions 2.0.1 to 2.6.0 are vulnerable to an Uncaught Exception. The app's media upload feature crashes permanently when an attacker with a low privileged access uploads a specially crafted .svg file...
CVE-2021-25971
The CVE-2021-25971 entry concerns Camaleon CMS versions 2.0.1 to 2.6.0, where an Uncaught Exception in the media upload feature can be triggered by a specially crafted SVG file uploaded by a low-privilege user. The vulnerability is described as causing a permanent crash (DoS) of the media upload ...