2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-3944 | — | — | 17.0% | Jul 31, 2006 | Microsoft Internet Explorer 6 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) via a (1) F... |
| CVE-2006-3946 | — | — | 5.0% | Jul 31, 2006 | WebCore in Apple Mac OS X 10.3.9 and 10.4 through 10.4.7 allows remote attackers to cause a denial of service (crash) an... |
| CVE-2006-3938 | — | — | 2.1% | Jul 31, 2006 | DotClear allows remote attackers to obtain sensitive information via a direct request for (1) edit_cat.php, (2) index.ph... |
| CVE-2006-3933 | — | — | 1.1% | Jul 31, 2006 | Cross-site scripting (XSS) vulnerability in Alkacon OpenCms before 6.2.2 allows remote authenticated users to inject arb... |
| CVE-2006-3934 | — | — | 1.4% | Jul 31, 2006 | Absolute path traversal vulnerability in downloadTrigger.jsp in Alkacon OpenCms before 6.2.2 allows remote authenticated... |
| CVE-2006-3935 | — | — | 1.7% | Jul 31, 2006 | system/workplace/views/admin/admin-main.jsp in Alkacon OpenCms before 6.2.2 does not restrict access to administrator fu... |
| CVE-2006-3936 | — | — | 1.4% | Jul 31, 2006 | system/workplace/editors/editor.jsp in Alkacon OpenCms before 6.2.2 allows remote authenticated users to read the source... |
| CVE-2006-3937 | — | — | 1.3% | Jul 31, 2006 | post.php in x_atrix xGuestBook 1.02 allows remote attackers to obtain sensitive information via a request without the (1... |
| CVE-2006-3940 | — | — | 1.1% | Jul 31, 2006 | Multiple SQL injection vulnerabilities in phpbb-Auction allow remote attackers to execute arbitrary SQL commands via (1)... |
| CVE-2006-3939 | — | — | 1.6% | Jul 31, 2006 | ScriptsCenter ezUpload Pro 2.2.0 allows remote attackers to perform administrative activities without authentication in ... |
| CVE-2006-3930 | — | — | 3.9% | Jul 31, 2006 | PHP remote file inclusion vulnerability in admin.a6mambohelpdesk.php in a6mambohelpdesk Mambo Component 18RC1 and earlie... |
| CVE-2006-3932 | — | — | 1.0% | Jul 31, 2006 | SQL injection vulnerability in links.php in Gonafish LinksCaffe 3.0 allows remote attackers to execute arbitrary SQL com... |
| CVE-2006-3931 | — | — | 1.0% | Jul 31, 2006 | Buffer overflow in the daemon function in midirecord.cc in Tuomas Airaksinen Midirecord 2.0 allows local users to execut... |
| CVE-2006-3926 | — | — | 1.7% | Jul 31, 2006 | Multiple SQL injection vulnerabilities in PhpProBid 5.24 allow remote attackers to execute arbitrary SQL commands via th... |
| CVE-2006-3927 | — | — | 1.9% | Jul 31, 2006 | Cross-site scripting (XSS) vulnerability in auctionsearch.php in PhpProBid 5.24 allows remote attackers to inject arbitr... |
| CVE-2006-3928 | — | — | 3.2% | Jul 31, 2006 | PHP remote file inclusion vulnerability in index.php in WMNews 0.2a and earlier allows remote attackers to execute arbit... |
| CVE-2006-3929 | — | — | 3.2% | Jul 31, 2006 | Cross-site scripting (XSS) vulnerability in the Forms/rpSysAdmin script on the Zyxel Prestige 660H-61 ADSL Router runnin... |
| CVE-2006-3120 | — | — | 3.1% | Jul 31, 2006 | Format string vulnerability in Brian Wotring Osiris before 4.2.1 allows remote attackers to cause a denial of service (a... |
| CVE-2006-2481 | — | — | 7.0% | Jul 31, 2006 | VMware ESX Server 2.0.x before 2.0.2 and 2.x before 2.5.2 patch 4 stores authentication credentials in base 64 encoded f... |
| CVE-2006-1178 | — | — | 2.1% | Jul 29, 2006 | Tamarack MMSd before 7.992 allows remote attackers to cause a denial of service (crash) via malformed RFC1006 (OSI over ... |
| CVE-2006-3812 | — | — | 3.1% | Jul 29, 2006 | Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to refere... |
| CVE-2006-3768 | — | — | 5.3% | Jul 28, 2006 | Integer underflow in filecpnt.exe in FileCOPA FTP Server 1.01 before 2006-07-21 allow remote authenticated users to exec... |
| CVE-2006-3925 | — | — | 2.7% | Jul 28, 2006 | Stack-based buffer overflow in ITIRecorder.MicRecorder ActiveX control in iarecord.dll in InterActual Player before 2.6 ... |
| CVE-2006-3924 | — | — | 1.2% | Jul 28, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in Dokeos before 1.6.5 allow remote attackers to inject arbitrary we... |
| CVE-2006-3921 | — | — | 2.2% | Jul 28, 2006 | Sun Java System Application Server (SJSAS) 7 through 8.1 and Web Server (SJSWS) 6.0 and 6.1 allows remote authenticated ... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now