2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-3892 | — | — | 4.5% | Mar 2, 2007 | The Management Console server in EMC NetWorker (formerly Legato NetWorker) 7.3.2 before Jumbo Update 1 uses weak authent... |
| CVE-2006-7087 | — | — | 1.8% | Mar 2, 2007 | CRLF injection vulnerability in the mail function in Dotdeb PHP before 5.2.0 Rev 3 allows remote attackers to bypass the... |
| CVE-2006-7088 | — | — | 1.1% | Mar 2, 2007 | Multiple SQL injection vulnerabilities in Simple PHP Forum before 0.4 allow remote attackers to execute arbitrary SQL co... |
| CVE-2006-7093 | — | — | 1.0% | Mar 2, 2007 | Cross-site scripting (XSS) vulnerability in Mambo LaiThai 4.5.4 Security Patch 2 and earlier allows remote attackers to ... |
| CVE-2006-7090 | — | — | 1.4% | Mar 2, 2007 | PHP remote file inclusion vulnerability in phpbb_security.php in phpBB Security 1.0.1 and earlier allows remote attacker... |
| CVE-2006-7074 | — | — | 1.5% | Mar 2, 2007 | admin.php in SmartSiteCMS 1.0 allows remote attackers to bypass authentication and gain administrator privileges by sett... |
| CVE-2006-7085 | — | — | 1.0% | Mar 2, 2007 | Rigter Portal System (RPS) 1.0, 2.0, and 3.0 allows remote attackers to add arbitrary content and conduct XSS attacks vi... |
| CVE-2006-7091 | — | — | 2.1% | Mar 2, 2007 | PHP remote file inclusion vulnerability in config.php in phpht Topsites FREE 1.022b allows remote attackers to execute a... |
| CVE-2006-7086 | — | — | 3.4% | Mar 2, 2007 | The (1) dlback.php and (2) dlback.cgi scripts in Hot Links allow remote attackers to obtain sensitive information and do... |
| CVE-2006-7094 | — | — | 2.6% | Mar 2, 2007 | ftpd, as used by Gentoo and Debian Linux, sets the gid to the effective uid instead of the effective group id before exe... |
| CVE-2006-7095 | — | — | 4.7% | Mar 2, 2007 | Integer signedness error in the network_receive_packet function in socket.c in dimension 3 engine (dim3) 1.5 and earlier... |
| CVE-2006-7081 | — | — | 2.6% | Mar 2, 2007 | Multiple PHP remote file inclusion vulnerabilities in PhpNews 1.0 allow remote attackers to execute arbitrary PHP code v... |
| CVE-2006-7078 | — | — | 1.2% | Mar 2, 2007 | Multiple cross-site scripting (XSS) vulnerabilities in Professional Home Page Tools Login Script, as of July 2006, allow... |
| CVE-2006-7082 | — | — | 2.8% | Mar 2, 2007 | Rigter Portal System (RPS) 1.0, 2.0, and 3.0 allows remote attackers to bypass authentication and upload arbitrary files... |
| CVE-2006-7075 | — | — | 2.0% | Mar 2, 2007 | Buffer overflow in the meta_read_flac function in meta_decoder.c for Aqualung 0.9beta5 and earlier, and CVS 0.193.2 and ... |
| CVE-2006-7077 | — | — | 1.1% | Mar 2, 2007 | SQL injection vulnerability in guestbook.php in Advanced Guestbook 2.4 for phpBB allows remote attackers to execute arbi... |
| CVE-2006-7080 | — | — | 4.5% | Mar 2, 2007 | Directory traversal vulnerability in the avatar upload feature in exV2 2.0.4.3 and earlier allows remote attackers to de... |
| CVE-2006-7083 | — | — | 1.3% | Mar 2, 2007 | Directory traversal vulnerability in index.php in Rigter Portal System (RPS) 1.0, 2.0, and 3.0 allows remote attackers t... |
| CVE-2006-7089 | — | — | 1.0% | Mar 2, 2007 | SQL injection vulnerability in connexion.php in Ban 0.1 allows remote attackers to execute arbitrary SQL commands via th... |
| CVE-2006-7065 | — | — | 19.9% | Mar 2, 2007 | Microsoft Internet Explorer allows remote attackers to cause a denial of service (crash) via an IFRAME with a certain XM... |
| CVE-2006-7092 | — | — | 1.1% | Mar 2, 2007 | SQL injection vulnerability in includes/mambo.php in Mambo LaiThai 4.5.4 SP2 and earlier allows remote attackers to exec... |
| CVE-2006-7076 | — | — | 1.0% | Mar 2, 2007 | Cross-site scripting (XSS) vulnerability in guestbook.php in Advanced Guestbook 2.4 for phpBB allows remote attackers to... |
| CVE-2006-7084 | — | — | — | Mar 2, 2007 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-7083. Reason: This candidate is a duplicate of... |
| CVE-2006-7060 | — | — | 1.3% | Feb 24, 2007 | cindex.php in Scriptsez.net E-Dating System allows remote attackers to obtain the full path via an invalid id parameter ... |
| CVE-2006-7061 | — | — | 1.8% | Feb 24, 2007 | Scriptsez.net E-Dating System stores data files with predictable names under the web document root with insufficient acc... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now