CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-1776

Camaleon CMS versions 2.4.5.0 through 2.9.0, prior to commit f54a77e, contain a path traversal vulnerability in the AWS S3 uploader implementation that allows authenticated users to read arbitrary files from the web server’s filesystem. The issue occurs in the download_private_file functionality when the application is configured to use the CamaleonCmsAwsUploader backend. Unlike the local uploader implementation, the AWS uploader does not validate file paths with valid_folder_path?, allowing directory traversal sequences to be supplied via the file parameter. As a result, any authenticated user, including low-privileged registered users, can access sensitive files such as /etc/passwd. This issue represents a bypass of the incomplete fix for CVE-2024-46987 and affects deployments using the AWS S3 storage backend.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 25.9%

CVSS Severity

CVSS v3 Score 6.5

References

Products affected by CVE-2026-1776

Tuzitio » Camaleon Cms » Version: 2.4.5

cpe:2.3:a:tuzitio:camaleon_cms:2.4.5
Tuzitio » Camaleon Cms » Version: 2.4.5.1

cpe:2.3:a:tuzitio:camaleon_cms:2.4.5.1
Tuzitio » Camaleon Cms » Version: 2.4.5.10

cpe:2.3:a:tuzitio:camaleon_cms:2.4.5.10
Tuzitio » Camaleon Cms » Version: 2.4.5.11

cpe:2.3:a:tuzitio:camaleon_cms:2.4.5.11
Tuzitio » Camaleon Cms » Version: 2.4.5.12

cpe:2.3:a:tuzitio:camaleon_cms:2.4.5.12
Tuzitio » Camaleon Cms » Version: 2.4.5.13

cpe:2.3:a:tuzitio:camaleon_cms:2.4.5.13
Tuzitio » Camaleon Cms » Version: 2.4.5.14

cpe:2.3:a:tuzitio:camaleon_cms:2.4.5.14
Tuzitio » Camaleon Cms » Version: 2.4.5.7

cpe:2.3:a:tuzitio:camaleon_cms:2.4.5.7
Tuzitio » Camaleon Cms » Version: 2.4.6.0

cpe:2.3:a:tuzitio:camaleon_cms:2.4.6.0
Tuzitio » Camaleon Cms » Version: 2.4.6.1

cpe:2.3:a:tuzitio:camaleon_cms:2.4.6.1
Tuzitio » Camaleon Cms » Version: 2.4.6.7

cpe:2.3:a:tuzitio:camaleon_cms:2.4.6.7
Tuzitio » Camaleon Cms » Version: 2.5.1

cpe:2.3:a:tuzitio:camaleon_cms:2.5.1
Tuzitio » Camaleon Cms » Version: 2.5.3

cpe:2.3:a:tuzitio:camaleon_cms:2.5.3
Tuzitio » Camaleon Cms » Version: 2.5.3.1

cpe:2.3:a:tuzitio:camaleon_cms:2.5.3.1
Tuzitio » Camaleon Cms » Version: 2.6.0

cpe:2.3:a:tuzitio:camaleon_cms:2.6.0
Tuzitio » Camaleon Cms » Version: 2.6.0.1

cpe:2.3:a:tuzitio:camaleon_cms:2.6.0.1
Tuzitio » Camaleon Cms » Version: 2.6.1

cpe:2.3:a:tuzitio:camaleon_cms:2.6.1
Tuzitio » Camaleon Cms » Version: 2.6.2

cpe:2.3:a:tuzitio:camaleon_cms:2.6.2
Tuzitio » Camaleon Cms » Version: 2.6.3

cpe:2.3:a:tuzitio:camaleon_cms:2.6.3
Tuzitio » Camaleon Cms » Version: 2.6.4

cpe:2.3:a:tuzitio:camaleon_cms:2.6.4
Tuzitio » Camaleon Cms » Version: 2.7.0

cpe:2.3:a:tuzitio:camaleon_cms:2.7.0
Tuzitio » Camaleon Cms » Version: 2.7.1

cpe:2.3:a:tuzitio:camaleon_cms:2.7.1
Tuzitio » Camaleon Cms » Version: 2.7.2

cpe:2.3:a:tuzitio:camaleon_cms:2.7.2
Tuzitio » Camaleon Cms » Version: 2.7.3

cpe:2.3:a:tuzitio:camaleon_cms:2.7.3
Tuzitio » Camaleon Cms » Version: 2.7.4

cpe:2.3:a:tuzitio:camaleon_cms:2.7.4
Tuzitio » Camaleon Cms » Version: 2.7.5

cpe:2.3:a:tuzitio:camaleon_cms:2.7.5
Tuzitio » Camaleon Cms » Version: 2.8.0

cpe:2.3:a:tuzitio:camaleon_cms:2.8.0
Tuzitio » Camaleon Cms » Version: 2.8.2

cpe:2.3:a:tuzitio:camaleon_cms:2.8.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-1776

Products

Pricing

Contact Us