2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-3014 | — | — | 30.1% | Jun 22, 2006 | Microsoft Excel allows user-assisted attackers to execute arbitrary javascript and redirect users to arbitrary sites via... |
| CVE-2006-3127 | — | — | 3.1% | Jun 21, 2006 | Memory leak in Network Security Services (NSS) 3.11, as used in Sun Java Enterprise System 2003Q4 through 2005Q1 and Jav... |
| CVE-2006-3128 | — | — | 1.2% | Jun 21, 2006 | choose_file.php in easy-CMS 0.1.2, when mod_mime is installed, does not restrict uploads of filenames with multiple exte... |
| CVE-2006-2911 | — | — | 1.4% | Jun 21, 2006 | SQL injection vulnerability in controlpanel/index.php in CMS Mundo before 1.0 build 008 allows remote attackers to execu... |
| CVE-2006-2931 | — | — | 1.5% | Jun 21, 2006 | CMS Mundo before 1.0 build 008 does not properly verify uploaded image files, which allows remote attackers to execute a... |
| CVE-2006-3112 | — | — | 1.4% | Jun 21, 2006 | Chipmailer 1.09 allows remote attackers to obtain sensitive information via a direct request to php.php, which displays ... |
| CVE-2006-3111 | — | — | 1.3% | Jun 21, 2006 | Multiple SQL injection vulnerabilities in main.php in Chipmailer 1.09 allow remote attackers to execute arbitrary SQL co... |
| CVE-2006-3107 | — | — | 1.7% | Jun 21, 2006 | Multiple PHP remote file inclusion vulnerabilities in Docebo 3.0.3 and earlier, when register_globals is enabled, allow ... |
| CVE-2006-3106 | — | — | 1.0% | Jun 21, 2006 | Cross-site scripting (XSS) vulnerability in index.php in phpMyDesktop|Arcade 1.0 allows remote attackers to inject arbit... |
| CVE-2006-3110 | — | — | 1.1% | Jun 21, 2006 | Cross-site scripting (XSS) vulnerability in main.php in Chipmailer 1.09 allows remote attackers to inject arbitrary web ... |
| CVE-2006-3101 | — | — | 23.6% | Jun 21, 2006 | Cross-site scripting (XSS) vulnerability in LogonProxy.cgi in Cisco Secure ACS for UNIX 2.3 allows remote attackers to i... |
| CVE-2006-3102 | — | — | 8.3% | Jun 21, 2006 | Race condition in articles/BitArticle.php in Bitweaver 1.3, when run on Apache with the mod_mime extension, allows remot... |
| CVE-2006-3103 | — | — | 4.7% | Jun 21, 2006 | Cross-site scripting (XSS) vulnerability in Bitweaver 1.3 allows remote attackers to inject arbitrary web script or HTML... |
| CVE-2006-3105 | — | — | 2.6% | Jun 21, 2006 | CRLF injection vulnerability in Bitweaver 1.3 allows remote attackers to conduct HTTP response splitting attacks by via ... |
| CVE-2006-3104 | — | — | 8.7% | Jun 21, 2006 | users/index.php in Bitweaver 1.3 allows remote attackers to obtain sensitive information via an invalid sort_mode parame... |
| CVE-2006-3108 | — | — | 1.3% | Jun 21, 2006 | Cross-site scripting (XSS) vulnerability in EmailArchitect Email Server 6.1 allows remote attackers to inject arbitrary ... |
| CVE-2006-3109 | — | — | 13.5% | Jun 21, 2006 | Cross-site scripting (XSS) vulnerability in Cisco CallManager 3.3 before 3.3(5)SR3, 4.1 before 4.1(3)SR4, 4.2 before 4.2... |
| CVE-2006-2942 | — | — | 1.5% | Jun 20, 2006 | TWiki 4.0.0, 4.0.1, and 4.0.2 allows remote attackers to gain Twiki administrator privileges via a TWiki.TWikiRegistrati... |
| CVE-2006-3097 | — | — | 0.5% | Jun 20, 2006 | Unspecified vulnerability in Support Tools Manager (xstm, cstm, and stm) on HP-UX B.11.11 and B.11.23 allows local users... |
| CVE-2006-3093 | — | — | 6.0% | Jun 19, 2006 | Multiple unspecified vulnerabilities in Adobe Acrobat Reader (acroread) before 7.0.8 have unknown impact and unknown vec... |
| CVE-2006-3094 | — | — | 1.9% | Jun 19, 2006 | Multiple SQL injection vulnerabilities in Calendarix Basic 0.7.20060401 and earlier, with magic_quotes_gpc disabled, all... |
| CVE-2006-3095 | — | — | 1.3% | Jun 19, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in iPostMX 2005 2.0 and earlier allow remote attackers to inject arb... |
| CVE-2006-3096 | — | — | 1.1% | Jun 19, 2006 | Multiple SQL injection vulnerabilities in iPostMX 2005 2.0 and earlier allow remote attackers to execute arbitrary SQL c... |
| CVE-2006-3092 | — | — | 2.9% | Jun 19, 2006 | PhpMyFactures 1.2 and earlier allows remote attackers to bypass authentication and modify data via direct requests with ... |
| CVE-2006-3087 | — | — | 1.3% | Jun 19, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in EZGallery 1.5 and earlier allow remote attackers to inject arbitr... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now