2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-4549CHXO Feedsplitter 2006-01-21 allows remote attackers to read the source code of feedsplitter.php via the showsource func...
CVE-2006-4548e107 0.75 and earlier does not properly unset variables when the input data includes a numeric parameter with a value ma...
CVE-2006-4547Lyris ListManager 8.95 allows remote authenticated users to obtain sensitive information by attempting to add a user wit...
CVE-2006-4546Lyris ListManager 8.95 allows remote authenticated users, who have administrative privileges for at least one list on th...
CVE-2006-4545PHP remote file inclusion vulnerability in ModuleBased CMS Pre-Alpha allows remote attackers to execute arbitrary PHP co...
CVE-2006-4544Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when register_globals is enabled, allow remote attacke...
CVE-2006-4543Cross-site scripting (XSS) vulnerability in index.php in HLStats 1.34 allows remote attackers to inject arbitrary web sc...
CVE-2006-3636Multiple cross-site scripting (XSS) vulnerabilities in Mailman before 2.1.9rc1 allow remote attackers to inject arbitrar...
CVE-2006-3126c2faxrecv in capi4hylafax 01.02.03 allows remote attackers to execute arbitrary commands via null (\0) and shell metacha...
CVE-2006-4096BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via a flood ...
CVE-2006-2941Mailman before 2.1.9rc1 allows remote attackers to cause a denial of service via unspecified vectors involving "standard...
CVE-2006-4541RapDrv.sys in BlackICE PC Protection 3.6.cpn, cpj, cpiE, and possibly 3.6 and earlier, allows local users to cause a den...
CVE-2006-4539(1) includes/widgets/module_company_tickets.php and (2) includes/widgets/module_track_tickets.php Client Support Center ...
CVE-2006-4540Cross-site scripting (XSS) vulnerability in learncenter.asp in Learn.com LearnCenter allows remote attackers to inject a...
CVE-2006-4542Webmin before 1.296 and Usermin before 1.226 do not properly handle a URL with a null ("%00") character, which allows re...
CVE-2006-4538Linux kernel 2.6.17 and earlier, when running on IA64 or SPARC platforms, allows local users to cause a denial of servic...
CVE-2006-4536SQL injection vulnerability in module/rejestracja.php in CMS Frogss 0.4 and earlier allows remote attackers to execute a...
CVE-2006-4537NET$SESSION_CONTROL.EXE in DECnet-Plus in OpenVMS ALPHA 7.3-2 and Alpha 8.2 writes a password to an audit log file when ...
CVE-2006-4339OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-...
CVE-2006-4534Unspecified vulnerability in Microsoft Word 2000, 2002, and Office 2003 allows remote user-assisted attackers to execute...
CVE-2006-4525Cross-site scripting (XSS) vulnerability in CubeCart 3.0.12 and earlier, when register_globals is enabled, allows remote...
CVE-2006-4524Multiple SQL injection vulnerabilities in login_verif.asp in Digiappz Freekot 1.01 allow remote attackers to execute arb...
CVE-2006-4522Unspecified vulnerability in dtterm in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code with root privil...
CVE-2006-4523The web-based management interface in 2Wire, Inc. HomePortal and OfficePortal Series modems and routers allows remote at...
CVE-2006-4533Multiple PHP remote file inclusion vulnerabilities in Plume CMS 1.0.6 and earlier allow remote attackers to execute arbi...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now