2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-2820 | — | — | 1.2% | Jun 5, 2006 | Cross-site scripting (XSS) vulnerability in HotWebScripts.com Weblog Oggi 1.0 allows remote attackers to inject arbitrar... |
| CVE-2006-2821 | — | — | 1.9% | Jun 5, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in DeltaScripts Pro Publish allow remote attackers to inject arbitra... |
| CVE-2006-2822 | — | — | 1.3% | Jun 5, 2006 | SQL injection vulnerability in admin/default.asp in Dusan Drobac CodeAvalanche FreeForum (aka CAForum) 1.0 allows remote... |
| CVE-2006-2823 | — | — | 1.6% | Jun 5, 2006 | Katrien De Graeve a.shopKart 2.0 (aka ashopKart20) stores sensitive information under the web root with insufficient acc... |
| CVE-2006-2824 | — | — | 1.5% | Jun 5, 2006 | Logicalware MailManager before 2.0.10 does not remove 0xc8 0x27 (0xc8 followed by a single-quote character) from the dat... |
| CVE-2006-2825 | — | — | 1.2% | Jun 5, 2006 | cPanel does not automatically synchronize the PHP open_basedir configuration directive between the main server and virtu... |
| CVE-2006-2826 | — | — | 3.1% | Jun 5, 2006 | SQL injection vulnerability in sessions.inc in PHP Base Library (PHPLib) before 7.4a allows remote attackers to execute ... |
| CVE-2006-2801 | — | — | 1.2% | Jun 3, 2006 | Multiple SQL injection vulnerabilities in Unak CMS 1.5 RC2 and earlier allow remote attackers to execute arbitrary SQL c... |
| CVE-2006-2799 | — | — | 1.3% | Jun 3, 2006 | Cross-site scripting (XSS) vulnerability in content_footer.php in toendaCMS 0.7.0 allows remote attackers to inject arbi... |
| CVE-2006-2800 | — | — | 1.1% | Jun 3, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in Unak CMS 1.5 RC2 and earlier allow remote attackers to inject arb... |
| CVE-2006-2804 | — | — | 1.3% | Jun 3, 2006 | Cross-site scripting (XSS) vulnerability in index.cfm in Goss Intelligent Content Management (iCM) 7.0 and earlier allow... |
| CVE-2006-2805 | — | — | 0.9% | Jun 3, 2006 | SQL injection vulnerability in VBulletin 3.0.10 allows remote attackers to execute arbitrary SQL commands via the featur... |
| CVE-2006-2803 | — | — | 2.1% | Jun 3, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in PHP ManualMaker 1.0 allows remote attackers to inject arbitrary w... |
| CVE-2006-2802 | — | — | 10.9% | Jun 3, 2006 | Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers to cause a denial o... |
| CVE-2006-2792 | — | — | 1.2% | Jun 3, 2006 | SQL injection vulnerability in misc.php in Woltlab Burning Board (WBB) 2.3.4 allows remote attackers to execute arbitrar... |
| CVE-2006-2793 | — | — | 1.3% | Jun 3, 2006 | SQL injection vulnerability in Anket.asp in ASPSitem 2.0 and earlier allows remote attackers to execute arbitrary SQL co... |
| CVE-2006-2791 | — | — | 1.7% | Jun 3, 2006 | Directory traversal vulnerability in index.php in iBoutique.MALL and possibly iBoutique allows remote attackers to read ... |
| CVE-2006-2798 | — | — | 2.2% | Jun 3, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in phpCommunityCalendar 4.0.3 allow remote attackers to inject arbit... |
| CVE-2006-2797 | — | — | 2.0% | Jun 3, 2006 | Multiple SQL injection vulnerabilities in phpCommunityCalendar 4.0.3 allow remote attackers to execute arbitrary SQL com... |
| CVE-2006-2796 | — | — | 1.4% | Jun 3, 2006 | Cross-site scripting (XSS) vulnerability in gallery.php in Captivate 1.0 allows remote attackers to inject arbitrary web... |
| CVE-2006-2795 | — | — | 1.4% | Jun 3, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in XiTi Tracking Script 6 and 7 RC allow remote attackers to inject ... |
| CVE-2006-2794 | — | — | 2.9% | Jun 3, 2006 | Hesabim.asp in ASPSitem 2.0 and earlier allows remote attackers to read private messages of other users via a modified i... |
| CVE-2006-2789 | — | — | 2.0% | Jun 2, 2006 | Evolution 2.2.x and 2.3.x in GNOME 2.7 and 2.8, when "load images if sender in addressbook" is enabled, allows remote at... |
| CVE-2006-2790 | — | — | 0.3% | Jun 2, 2006 | A package component in Sun Storage Automated Diagnostic Environment (StorADE) 2.4 uses world-writable permissions for ce... |
| CVE-2006-2788 | — | — | 4.3% | Jun 2, 2006 | Double free vulnerability in the getRawDER function for nsIX509Cert in Firefox allows remote attackers to cause a denial... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now