2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-6951 | — | — | 1.7% | Jan 23, 2007 | Cross-site scripting (XSS) vulnerability in blog.php in OdysseusBlog allows remote attackers to inject arbitrary web scr... |
| CVE-2006-6948 | — | — | 1.2% | Jan 23, 2007 | MyODBC Japanese conversion edition 3.51.06, 2.50.29, and 2.50.25 allows remote attackers to cause a denial of service vi... |
| CVE-2006-6949 | — | — | 0.3% | Jan 23, 2007 | Conti FTPServer 1.0 Build 2.8 stores user passwords in cleartext in MyServerSettings.ini, which allows local users to ob... |
| CVE-2006-6946 | — | — | 1.2% | Jan 23, 2007 | The web server in the NEC MultiWriter 1700C allows remote attackers to modify the device configuration via unspecified v... |
| CVE-2006-6947 | — | — | 1.2% | Jan 23, 2007 | The FTP server in the NEC MultiWriter 1700C allows remote attackers to redirect traffic to other sites (aka FTP bounce) ... |
| CVE-2006-6945 | — | — | 1.3% | Jan 19, 2007 | SQL injection vulnerability in Virtuemart 1.0.7 allows remote attackers to execute arbitrary SQL commands via unspecifie... |
| CVE-2006-6943 | — | — | 4.4% | Jan 19, 2007 | PhpMyAdmin before 2.9.1.1 allows remote attackers to obtain the full server path via direct requests to (a) scripts/chec... |
| CVE-2006-6942 | — | — | 3.2% | Jan 19, 2007 | Multiple cross-site scripting (XSS) vulnerabilities in PhpMyAdmin before 2.9.1.1 allow remote attackers to inject arbitr... |
| CVE-2006-6944 | — | — | 1.4% | Jan 19, 2007 | phpMyAdmin before 2.9.1.1 allows remote attackers to bypass Allow/Deny access rules that use IP addresses via false head... |
| CVE-2006-5963 | — | — | 1.6% | Jan 19, 2007 | Directory traversal vulnerability in PentaZip 8.5.1.190 and PentaSuite-PRO 8.5.1.221 allows user-assisted remote attacke... |
| CVE-2006-5964 | — | — | 1.6% | Jan 19, 2007 | choShilA.bpl in PentaZip 8.5.1.190 and PentaSuite-PRO 8.5.1.221 allows local users, and user-assisted remote attackers t... |
| CVE-2006-6941 | — | — | 2.3% | Jan 19, 2007 | index.php in FreeWebshop 2.2.2 and earlier allows remote attackers to obtain sensitive information via an invalid action... |
| CVE-2006-6489 | — | — | 2.0% | Jan 18, 2007 | The SISCO OSI stack, as used in SISCO MMS-EASE, ICCP Toolkit for MMS-EASE, AX-S4 MMS and AX-S4 ICCP, and possibly other ... |
| CVE-2006-6491 | — | — | — | Jan 18, 2007 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was... |
| CVE-2006-6492 | — | — | — | Jan 18, 2007 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was... |
| CVE-2006-6940 | — | — | 4.6% | Jan 17, 2007 | Buffer overflow in the ParseHeader function in clsOWA.cls in POP3/SMTP to OWA (pop2owa) 1.1.3 allows remote attackers to... |
| CVE-2006-6939 | — | — | 0.4% | Jan 17, 2007 | GNU ed before 0.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files, possibly in t... |
| CVE-2006-6936 | — | — | 1.7% | Jan 17, 2007 | Cross-site scripting (XSS) vulnerability in Xtreme ASP Photo Gallery allows remote attackers to inject arbitrary HTML or... |
| CVE-2006-6937 | — | — | 1.2% | Jan 17, 2007 | SQL injection vulnerability in displaypic.asp in Xtreme ASP Photo Gallery allows remote attackers to inject arbitrary SQ... |
| CVE-2006-6938 | — | — | 2.9% | Jan 17, 2007 | Directory traversal vulnerability in includes/common.php in NitroTech 0.0.3a, as distributed before 2006, allows remote ... |
| CVE-2006-6934 | — | — | 1.4% | Jan 16, 2007 | Multiple cross-site scripting (XSS) vulnerabilities in Portix-PHP 0.4.2 allow remote attackers to inject arbitrary web s... |
| CVE-2006-6931 | — | — | 2.3% | Jan 16, 2007 | Algorithmic complexity vulnerability in Snort before 2.6.1, during predicate evaluation in rule matching for certain rul... |
| CVE-2006-6932 | — | — | 1.0% | Jan 16, 2007 | Multiple SQL injection vulnerabilities in Image Gallery with Access Database allow remote attackers to execute arbitrary... |
| CVE-2006-6935 | — | — | 1.1% | Jan 16, 2007 | SQL injection vulnerability in the login component in Portix-PHP 0.4.2 allows remote attackers to execute arbitrary SQL ... |
| CVE-2006-6933 | — | — | 2.1% | Jan 16, 2007 | Easy Chat Server 2.1 stores sensitive information under the web root with insufficient access control, which allows remo... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now