Directory Traversal Issue in Horde Kronolith by The Horde Project
CVE-2006-6175

Currently unrated

Key Information:

Vendor

Horde

Status
Vendor
CVE Published:
30 November 2006

What is CVE-2006-6175?

The vulnerability found in Horde Kronolith allows remote attackers to perform directory traversal by manipulating the view parameter. This exploitation can lead to arbitrary file inclusion, enabling attackers to execute PHP code on the server. The affected versions are all releases prior to 2.0.7 and 2.1.x before 2.1.4, making it crucial for users to upgrade their installations to mitigate potential risks.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.