2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-4439 | — | — | 0.4% | Aug 29, 2006 | pkgadd in Sun Solaris 10 before 20060825 installs files with insecure file and directory permissions (755 or 777) if the... |
| CVE-2006-4440 | — | — | 8.1% | Aug 29, 2006 | PHP remote file inclusion vulnerability in main.php in Ay System Solutions CMS 2.6 and earlier allows remote attackers t... |
| CVE-2006-4441 | — | — | 2.5% | Aug 29, 2006 | Multiple PHP remote file inclusion vulnerabilities in Ay System Solutions CMS 2.6 and earlier allow remote attackers to ... |
| CVE-2006-4442 | — | — | 1.3% | Aug 29, 2006 | Cross-site scripting (XSS) vulnerability in PHP iAddressBook before 0.95 allows remote attackers to inject arbitrary web... |
| CVE-2006-4444 | — | — | 2.8% | Aug 29, 2006 | Multiple SQL injection vulnerabilities in Cybozu Garoon 2.1.0 for Windows allow remote authenticated users to execute ar... |
| CVE-2006-4421 | — | — | 1.6% | Aug 29, 2006 | Cross-site scripting (XSS) vulnerability in template/default/thanks_comment.php in Yet Another PHP Image Gallery (YaPIG)... |
| CVE-2006-4422 | — | — | 4.4% | Aug 29, 2006 | PHP remote file inclusion vulnerability in includes/phpdig/libs/search_function.php in Jetbox CMS 2.1 allows remote atta... |
| CVE-2006-4423 | — | — | 3.0% | Aug 29, 2006 | Multiple PHP remote file inclusion vulnerabilities in Bigace 1.8.2 allow remote attackers to execute arbitrary PHP code ... |
| CVE-2006-4424 | — | — | 7.5% | Aug 29, 2006 | PHP remote file inclusion vulnerability in coin_includes/constants.php in phpCOIN 1.2.3 allows remote attackers to execu... |
| CVE-2006-4425 | — | — | 4.0% | Aug 29, 2006 | Multiple PHP remote file inclusion vulnerabilities in phpCOIN 1.2.3 allow remote attackers to execute arbitrary PHP code... |
| CVE-2006-4426 | — | — | 3.0% | Aug 29, 2006 | PHP remote file inclusion vulnerability in AES/modules/auth/phpsecurityadmin/include/logout.php in AlberT-EasySite (AES)... |
| CVE-2006-4427 | — | — | 3.0% | Aug 29, 2006 | index.php in eFiction before 2.0.7 allows remote attackers to bypass authentication and gain privileges by setting the (... |
| CVE-2006-4429 | — | — | 1.5% | Aug 29, 2006 | PHP remote file inclusion vulnerability in handlers/email/mod.output.php in PHlyMail Lite 3.4.4 and earlier (Build 3.04.... |
| CVE-2006-4430 | — | — | 1.9% | Aug 29, 2006 | The Cisco Network Admission Control (NAC) 3.6.4.1 and earlier allows remote attackers to prevent installation of the Cis... |
| CVE-2006-4431 | — | — | 4.4% | Aug 29, 2006 | Multiple buffer overflows in the (a) Session Clustering Daemon and the (b) mod_cluster module in the Zend Platform 2.2.1... |
| CVE-2006-4432 | — | — | 2.0% | Aug 29, 2006 | Directory traversal vulnerability in Zend Platform 2.2.1 and earlier allows remote attackers to overwrite arbitrary file... |
| CVE-2006-4433 | — | — | 1.8% | Aug 29, 2006 | PHP before 4.4.3 and 5.x before 5.1.4 does not limit the character set of the session identifier (PHPSESSID) for third p... |
| CVE-2006-4435 | — | — | 0.3% | Aug 29, 2006 | OpenBSD 3.8, 3.9, and possibly earlier versions allows context-dependent attackers to cause a denial of service (kernel ... |
| CVE-2006-4436 | — | — | 1.7% | Aug 29, 2006 | isakmpd in OpenBSD 3.8, 3.9, and possibly earlier versions, creates Security Associations (SA) with a replay window of s... |
| CVE-2006-4417 | — | — | 1.6% | Aug 28, 2006 | SQL injection vulnerability in edituser.php in Xoops before 2.0.15 allows remote attackers to execute arbitrary SQL comm... |
| CVE-2006-4418 | — | — | 2.6% | Aug 28, 2006 | Directory traversal vulnerability in index.php for Wikepage 2006.2a Opus 10 allows remote attackers to include arbitrary... |
| CVE-2006-4419 | — | — | 1.1% | Aug 28, 2006 | SQL injection vulnerability in note.php in ProManager 0.73 allows remote attackers to execute arbitrary SQL commands via... |
| CVE-2006-4420 | — | — | 2.5% | Aug 28, 2006 | Directory traversal vulnerability in include_lang.php in Phaos 0.9.2 allows remote attackers to include arbitrary local ... |
| CVE-2006-4416 | — | — | 0.4% | Aug 28, 2006 | Untrusted search path vulnerability in the mkvg command in IBM AIX 5.2 and 5.3 allows local users to gain privileges by ... |
| CVE-2006-4380 | — | — | 0.5% | Aug 28, 2006 | MySQL before 4.1.13 allows local users to cause a denial of service (persistent replication slave crash) via a query wit... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now