VYPR
Unrated severityNVD Advisory· Published Dec 31, 2006· Updated Jun 16, 2026

CVE-2006-6852

CVE-2006-6852

Description

Eval injection vulnerability in tDiary 2.0.3 and 2.1.4.200 61127 allows remote authenticated users to execute arbitrary Ruby code via unspecified vectors, possibly related to incorrect input validation by (1) conf.rhtml and (2) i.conf.rhtml. NOTE: some of these details are obtained from third party information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Tdiary/Tdiary4 versions
    cpe:2.3:a:tdiary:tdiary:2.0.1:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:tdiary:tdiary:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:tdiary:tdiary:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:tdiary:tdiary:2.0.3:*:*:*:*:*:*:*
    • (no CPE)range: <=2.1.4.20061127

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.