VYPR
Unrated severityNVD Advisory· Published Nov 30, 2006· Updated Jun 16, 2026

CVE-2006-6175

CVE-2006-6175

Description

Directory traversal vulnerability in lib/FBView.php in Horde Kronolith H3 before 2.0.7 and 2.1.x before 2.1.4 allows remote attackers to include arbitrary files and execute PHP code via a .. (dot dot) sequence in the view parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • cpe:2.3:a:horde:kronolith:2.0.1:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:horde:kronolith:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:horde:kronolith:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:horde:kronolith:2.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:horde:kronolith:2.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:horde:kronolith:2.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:horde:kronolith:2.0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:horde:kronolith:2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:horde:kronolith:2.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:horde:kronolith:2.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:horde:kronolith:2.1.3:*:*:*:*:*:*:*
    • (no CPE)range: <=2.0.6, <=2.1.3

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.