Kicktd

**Name of the Vulnerable Software and Affected Versions** UNIDOmedia Chameleon LE versions 1.203 and earlier UNIDOmedia Chameleon PRO (affected versions not specified) **Description** The issue allows remote attackers to read arbitrary files via the `rmid` parameter in the "index.php" file. **Recommendations** For UNIDOmedia Chameleon LE versions 1.203 and earlier, update to a version later than 1.203. For UNIDOmedia Chameleon PRO, at the moment, there is no information about a newer version that contains a fix for this vulnerability.