2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-4877 | — | — | 8.6% | Sep 19, 2006 | Variable overwrite vulnerability in David Bennett PHP-Post (PHPp) 1.0 and earlier allows remote attackers to overwrite a... |
| CVE-2006-4878 | — | — | 5.8% | Sep 19, 2006 | Directory traversal vulnerability in footer.php in David Bennett PHP-Post (PHPp) 1.0 and earlier allows remote attackers... |
| CVE-2006-4879 | — | — | 1.9% | Sep 19, 2006 | SQL injection vulnerability in profile.php in David Bennett PHP-Post (PHPp) 1.0 and earlier allows remote attackers to e... |
| CVE-2006-4880 | — | — | 2.3% | Sep 19, 2006 | David Bennett PHP-Post (PHPp) 1.0 and earlier allows remote attackers to obtain sensitive information via a direct reque... |
| CVE-2006-4881 | — | — | 4.5% | Sep 19, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in David Bennett PHP-Post (PHPp) 1.0 and earlier allow remote attack... |
| CVE-2006-4334 | — | — | 3.9% | Sep 19, 2006 | Unspecified vulnerability in gzip 1.3.5 allows context-dependent attackers to cause a denial of service (crash) via a cr... |
| CVE-2006-4335 | — | — | 5.5% | Sep 19, 2006 | Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running o... |
| CVE-2006-3866 | — | — | — | Sep 19, 2006 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-4868. Reason: This candidate is a duplicate of... |
| CVE-2006-2191 | — | — | 2.5% | Sep 19, 2006 | Format string vulnerability in Mailman before 2.1.9 allows attackers to execute arbitrary code via unspecified vectors. ... |
| CVE-2006-4337 | — | — | 5.6% | Sep 19, 2006 | Buffer overflow in the make_table function in the LHZ component in gzip 1.3.5 allows context-dependent attackers to exec... |
| CVE-2006-4336 | — | — | 5.5% | Sep 19, 2006 | Buffer underflow in the build_tree function in unpack.c in gzip 1.3.5 allows context-dependent attackers to execute arbi... |
| CVE-2006-4866 | — | — | 0.9% | Sep 19, 2006 | Buffer overflow in kextload in Apple OS X, as used by TDIXSupport in Roxio Toast Titanium and possibly other products, a... |
| CVE-2006-4867 | — | — | 2.3% | Sep 19, 2006 | SQL injection vulnerability in mods.php in GNUTurk 2G and earlier allows remote attackers to execute arbitrary SQL comma... |
| CVE-2006-4868 | — | — | 62.1% | Sep 19, 2006 | Stack-based buffer overflow in the Vector Graphics Rendering engine (vgx.dll), as used in Microsoft Outlook and Internet... |
| CVE-2006-4869 | — | — | 6.5% | Sep 19, 2006 | PHP remote file inclusion vulnerability in phpunity-postcard.php in phpunity.postcard allows remote attackers to execute... |
| CVE-2006-4870 | — | — | 9.9% | Sep 19, 2006 | Multiple PHP remote file inclusion vulnerabilities in AEDating 4.1, and possibly earlier versions, allow remote attacker... |
| CVE-2006-4535 | — | — | 0.4% | Sep 19, 2006 | The Linux kernel 2.6.17.10 and 2.6.17.11 and 2.6.18-rc5 allows local users to cause a denial of service (crash) via an S... |
| CVE-2006-4855 | — | — | 1.3% | Sep 19, 2006 | The \Device\SymEvent driver in Symantec Norton Personal Firewall 2006 9.1.0.33, and other versions of Norton Personal Fi... |
| CVE-2006-4856 | — | — | 2.5% | Sep 19, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in Roller WebLogger 2.3 allow remote attackers to inject arbitrary w... |
| CVE-2006-4857 | — | — | 2.5% | Sep 19, 2006 | SQL injection vulnerability in default.asp (aka the login page) in ClickTech ClickBlog 2.0 allows remote attackers to ex... |
| CVE-2006-4858 | — | — | 6.9% | Sep 19, 2006 | PHP remote file inclusion vulnerability in install.serverstat.php in the Serverstat (com_serverstat) 0.4.4 and earlier c... |
| CVE-2006-4859 | — | — | 7.4% | Sep 19, 2006 | Unrestricted file upload vulnerability in contact.html.php in the Contact (com_contact) component in Limbo (aka Lite Mam... |
| CVE-2006-4860 | — | — | 2.9% | Sep 19, 2006 | Multiple unspecified vulnerabilities in (1) index.php, (2) minixml.inc.php, (3) doc.inc.php, (4) element.inc.php, (5) no... |
| CVE-2006-4861 | — | — | 1.6% | Sep 19, 2006 | SQL injection vulnerability in loginprocess.asp in Mohammed Mehdi Panjwani Complain Center 1 allows remote attackers to ... |
| CVE-2006-4862 | — | — | 1.6% | Sep 19, 2006 | SQL injection vulnerability in default.aspx in easypage allows remote attackers to execute arbitrary SQL commands via th... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now