CVE-2006-3836
Directory traversal vulnerability in index.php in UNIDOmedia Chameleon LE 1.203 and earlier, and possibly Chameleon PRO, allows remote attackers to read arbitrary files via the rmid parameter.
Date published : 2006-07-24
http://www.securityfocus.com/bid/19107
http://www.securityfocus.com/archive/1/440765/100/0/threaded