Unrated severityNVD Advisory· Published Nov 30, 2006· Updated Apr 23, 2026
CVE-2006-6175
CVE-2006-6175
Description
Directory traversal vulnerability in lib/FBView.php in Horde Kronolith H3 before 2.0.7 and 2.1.x before 2.1.4 allows remote attackers to include arbitrary files and execute PHP code via a .. (dot dot) sequence in the view parameter.
Affected products
10cpe:2.3:a:horde:kronolith:2.0.1:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:horde:kronolith:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith:2.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith:2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith:2.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith:2.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith:2.1.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- labs.idefense.com/intelligence/vulnerabilities/display.phpnvdPatchVendor Advisory
- www.securityfocus.com/bid/21341nvdPatch
- marc.infonvd
- marc.infonvd
- secunia.com/advisories/23145nvd
- secunia.com/advisories/23780nvd
- security.gentoo.org/glsa/glsa-200701-11.xmlnvd
- securitytracker.com/idnvd
- www.vupen.com/english/advisories/2006/4775nvd
News mentions
0No linked articles in our index yet.