2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-3291The web interface on Cisco IOS 12.3(8)JA and 12.3(8)JA1, as used on the Cisco Wireless Access Point and Wireless Bridge,...
CVE-2006-3290HTTP server in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) stores sensitive information und...
CVE-2006-3289Cross-site scripting (XSS) vulnerability in the login page of the HTTP interface for the Cisco Wireless Control System (...
CVE-2006-3288Unspecified vulnerability in the TFTP server in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51)...
CVE-2006-3287Cisco Wireless Control System (WCS) for Linux and Windows 4.0(1) and earlier uses a default administrator username "root...
CVE-2006-3286The internal database in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(63) stores a hard-coded us...
CVE-2006-3269PHP remote file inclusion vulnerability in includes/functions_cms.php in THoRCMS 1.3.1 allows remote attackers to execut...
CVE-2006-3285The internal database in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) uses an undocumented, ...
CVE-2006-3284Cross-site scripting (XSS) vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to inject arbitrary web scrip...
CVE-2006-3283SQL injection vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to execute arbitrary SQL commands via the ...
CVE-2006-3282requirements.php in Dating Agent PRO 4.7.1 allows remote attackers to obtain sensitive information via a direct request,...
CVE-2006-3281Microsoft Internet Explorer 6.0 does not properly handle Drag and Drop events, which allows remote user-assisted attacke...
CVE-2006-3280Cross-domain vulnerability in Microsoft Internet Explorer 6.0 allows remote attackers to access restricted information f...
CVE-2006-3279Cross-site scripting (XSS) vulnerability in aeDating 4.1 allows remote attackers to inject arbitrary web script or HTML ...
CVE-2006-3278Cross-site scripting (XSS) vulnerability in H-Sphere 2.5.1 Beta 1 and earlier allows remote attackers to inject arbitrar...
CVE-2006-3277The SMTP service of MailEnable Standard 1.92 and earlier, Professional 2.0 and earlier, and Enterprise 2.0 and earlier b...
CVE-2006-3276Heap-based buffer overflow in RealNetworks Helix DNA Server 10.0 and 11.0 allows remote attackers to execute arbitrary c...
CVE-2006-3275SQL injection vulnerability in profile.php in YaBB SE 1.5.5 and earlier allows remote attackers to execute SQL commands ...
CVE-2006-3274Directory traversal vulnerability in Webmin before 1.280, when run on Windows, allows remote attackers to read arbitrary...
CVE-2006-3273Cross-site scripting (XSS) vulnerability in menu.php in Some Chess 1.5 rc1 allows remote attackers to inject arbitrary w...
CVE-2006-3272Cross-site request forgery (CSRF) vulnerability in menu.php in Some Chess 1.5 rc2 allows remote attackers to conduct act...
CVE-2006-3271Multiple SQL injection vulnerabilities in Softbiz Dating 1.0 allow remote attackers to execute SQL commands via the (1) ...
CVE-2006-3270SQL injection vulnerability in cms_admin.php in THoRCMS 1.3.1 allows remote attackers to execute arbitrary SQL commands ...
CVE-2006-3257Multiple cross-site scripting (XSS) vulnerabilities in Claroline 1.7.7 allow remote attackers to inject arbitrary HTML o...
CVE-2006-3253Cross-site scripting (XSS) vulnerability in member.php in vBulletin 3.5.x allows remote attackers to inject arbitrary we...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now