2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-3612Cross-site scripting (XSS) vulnerability in Phorum 5.1.14 allows remote attackers to inject arbitrary web script or HTML...
CVE-2006-3617Cross-site scripting (XSS) vulnerability in pblguestbook.php in Pixelated By Lev (PBL) Guestbook 1.32 and earlier allows...
CVE-2006-3621SQL injection vulnerability in the showtopic module in Koobi Pro CMS 5.6 allows remote attackers to execute arbitrary SQ...
CVE-2006-3615Multiple PHP remote file inclusion vulnerabilities in Phorum 5.1.14, when register_globals is enabled, allow remote atta...
CVE-2006-3616Multiple cross-site scripting (XSS) vulnerabilities in Carbonize Lazarus Guestbook 1.6 and earlier allow remote attacker...
CVE-2006-3625FLV Players 8 allows remote attackers to obtain sensitive information via (1) a direct request to paginate.php or (2) an...
CVE-2006-3624Multiple cross-site scripting (XSS) vulnerabilities in FLV Players 8 allow remote attackers to inject arbitrary web scri...
CVE-2006-3623Directory traversal vulnerability in Framework Service component in McAfee ePolicy Orchestrator agent 3.5.0.x and earlie...
CVE-2006-3622The showtopic module in Koobi Pro CMS 5.6 allows remote attackers to obtain sensitive information via a ' (single quote)...
CVE-2006-3626Race condition in Linux kernel 2.6.17.4 and earlier allows local users to gain root privileges by using prctl with PR_SE...
CVE-2006-2450auth.c in LibVNCServer 0.7.1 allows remote attackers to bypass authentication via a request in which the client specifie...
CVE-2006-3593The command line interface (CLI) in Cisco Unified CallManager (CUCM) 5.0(1) through 5.0(3a) allows local users to overwr...
CVE-2006-3595The default configuration of IOS HTTP server in Cisco Router Web Setup (CRWS) before 3.3.0 build 31 does not require cre...
CVE-2006-3596The device driver for Intel-based gigabit network adapters in Cisco Intrusion Prevention System (IPS) 5.1(1) through 5.1...
CVE-2006-3597passwd before 1:4.0.13 on Ubuntu 6.06 LTS leaves the root password blank instead of locking it when the administrator se...
CVE-2006-3598SQL injection vulnerability in the Sections module for PHP-Nuke allows remote attackers to execute arbitrary SQL command...
CVE-2006-3599SQL injection vulnerability in the Nuke Advanced Classifieds module for PHP-Nuke allows remote attackers to execute arbi...
CVE-2006-3600Multiple stack-based buffer overflows in the LookupTRM::lookup function in libtunepimp (TunePimp) 0.4.2 allow remote use...
CVE-2006-3601** UNVERIFIABLE ** Unspecified vulnerability in an unspecified DNN Modules module for DotNetNuke (.net nuke) allows rem...
CVE-2006-3602Directory traversal vulnerability in jscripts/tiny_mce/tiny_mce_gzip.php in FarsiNews 3.0 BETA 1 allows remote attackers...
CVE-2006-3603Cross-site scripting (XSS) vulnerability in index.php in FlexWATCH Network Camera 3.0 and earlier allows remote attacker...
CVE-2006-3604Directory traversal vulnerability in FlexWATCH Network Camera 3.0 and earlier allows remote attackers to bypass access r...
CVE-2006-3605Microsoft Internet Explorer 6 allows remote attackers to cause a denial of service (crash) by setting the Transition pro...
CVE-2006-3594Buffer overflow in Cisco Unified CallManager (CUCM) 5.0(1) through 5.0(3a) allows remote attackers to execute arbitrary ...
CVE-2006-3591Microsoft Internet Explorer 6 allows remote attackers to cause a denial of service (application crash) by accessing the ...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now