Horde : Security Vulnerabilities, CVEs, Published In November 2006 (Directory traversal)
Directory traversal vulnerability in lib/FBView.php in Horde Kronolith H3 before 2.0.7 and 2.1.x before 2.1.4 allows remote attackers to include arbitrary files and execute PHP code via a .. (dot dot) sequence in the view parameter.
Max CVSS
7.5
EPSS Score
1.72%
Published
2006-11-30
Updated
2016-10-18
1 vulnerabilities found