2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-6995 | — | — | 1.5% | Feb 12, 2007 | mycontacts.php in V3 Chat allows remote authenticated users to gain privileges as other users via a modified membername ... |
| CVE-2006-6994 | — | — | 2.2% | Feb 12, 2007 | Unrestricted file upload vulnerability in add.asp in OzzyWork Gallery, possibly 2.0 and earlier, allows remote attackers... |
| CVE-2006-6996 | — | — | 0.8% | Feb 12, 2007 | Multiple cross-site scripting (XSS) vulnerabilities in warforge.NEWS 1.0 allow remote attackers to inject arbitrary HTML... |
| CVE-2006-6983 | — | — | 1.1% | Feb 9, 2007 | Cross-domain vulnerability in MYweb4net Browser 3.8.8.0 allows remote attackers to access restricted information from ot... |
| CVE-2006-6985 | — | — | 1.1% | Feb 9, 2007 | Cross-domain vulnerability in Maxthon 1.5.6 build 42 allows remote attackers to access restricted information from other... |
| CVE-2006-6984 | — | — | 1.1% | Feb 9, 2007 | Cross-domain vulnerability in GreenBrowser 3.4.0622 allows remote attackers to access restricted information from other ... |
| CVE-2006-6989 | — | — | 1.3% | Feb 9, 2007 | Cross-domain vulnerability in NetCaptor 4.5.7 Personal Edition allows remote attackers to access restricted information ... |
| CVE-2006-6988 | — | — | 1.3% | Feb 9, 2007 | Cross-domain vulnerability in Slim Browser 4.07 build 100 allows remote attackers to access restricted information from ... |
| CVE-2006-6986 | — | — | 1.3% | Feb 9, 2007 | Cross-domain vulnerability in PhaseOut 5.4.4 allows remote attackers to access restricted information from other domains... |
| CVE-2006-6991 | — | — | 1.3% | Feb 9, 2007 | Cross-domain vulnerability in Fast Browser Pro 8.1 allows remote attackers to access restricted information from other d... |
| CVE-2006-6987 | — | — | 1.3% | Feb 9, 2007 | Cross-domain vulnerability in FineBrowser Freeware 3.2.2 allows remote attackers to access restricted information from o... |
| CVE-2006-6990 | — | — | 1.3% | Feb 9, 2007 | Cross-domain vulnerability in Enigma Browser 3.8.8 allows remote attackers to access restricted information from other d... |
| CVE-2006-6992 | — | — | 1.3% | Feb 9, 2007 | Cross-domain vulnerability in GoSuRF Browser 2.62 allows remote attackers to access restricted information from other do... |
| CVE-2006-6980 | — | — | 1.4% | Feb 8, 2007 | The magnatune.com album browser in Amarok allows attackers to cause a denial of service (application crash) via unspecif... |
| CVE-2006-6981 | — | — | 1.2% | Feb 8, 2007 | 3proxy 0.5 to 0.5.2, when NT-encoded passwords are being used, allows remote attackers to cause a denial of service (blo... |
| CVE-2006-6982 | — | — | 1.0% | Feb 8, 2007 | 3proxy 0.5 to 0.5.2 does not offer NTLM authentication before basic authentication, which might cause browsers with inco... |
| CVE-2006-6979 | — | — | 2.3% | Feb 8, 2007 | The ruby handlers in the Magnatune component in Amarok do not properly quote text in certain contexts, probably includin... |
| CVE-2006-6977 | — | — | 1.1% | Feb 8, 2007 | Cross-site scripting (XSS) vulnerability in the "Basic Toolbar Selection" in FreeTextBox allows remote attackers to exec... |
| CVE-2006-6978 | — | — | 1.1% | Feb 8, 2007 | Cross-site scripting (XSS) vulnerability in the "Basic Toolbar Selection" in FCKEditor allows remote attackers to execut... |
| CVE-2006-2220 | — | — | 1.3% | Feb 8, 2007 | phpBB 2.0.20 does not properly verify user-specified input variables used as limits to SQL queries, which allows remote ... |
| CVE-2006-2219 | — | — | 1.5% | Feb 8, 2007 | phpBB 2.0.20 does not verify user-specified input variable types before being passed to type-dependent functions, which ... |
| CVE-2006-6976 | — | — | 4.1% | Feb 8, 2007 | PHP remote file inclusion vulnerability in centipaid_class.php in CentiPaid 1.4.2 and earlier allows remote attackers to... |
| CVE-2006-6972 | — | — | 1.4% | Feb 7, 2007 | SQL injection in torrents.php in BtitTracker 1.3.2 and earlier allows remote attackers to execute arbitrary SQL commands... |
| CVE-2006-6973 | — | — | 1.3% | Feb 7, 2007 | Headstart Solutions DeskPRO does not require authentication for certain files and directories associated with administra... |
| CVE-2006-6974 | — | — | 1.3% | Feb 7, 2007 | Headstart Solutions DeskPRO stores sensitive information under the web root with insufficient access control, which allo... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now