2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-2654 | — | — | 2.7% | Jun 2, 2006 | Directory traversal vulnerability in smbfs smbfs on FreeBSD 4.10 up to 6.1 allows local users to escape chroot restricti... |
| CVE-2006-2755 | — | — | 2.3% | Jun 2, 2006 | Cross-site scripting (XSS) vulnerability in index.php in UBBThreads 5.x and earlier allows remote attackers to inject ar... |
| CVE-2006-2756 | — | — | 1.8% | Jun 2, 2006 | Eitsop My Web Server 1.0 allows remote attackers to cause a denial of service (application crash) via a long GET request... |
| CVE-2006-2757 | — | — | 1.6% | Jun 2, 2006 | Cross-site scripting (XSS) vulnerability in Chipmunk guestbook allows remote attackers to inject arbitrary web script or... |
| CVE-2006-2758 | — | — | 3.9% | Jun 2, 2006 | Directory traversal vulnerability in jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary files via a %... |
| CVE-2006-2760 | — | — | 1.3% | Jun 2, 2006 | SQL injection vulnerability in modules.php in 4nNukeWare 4nForum 0.91 allows remote attackers to execute arbitrary SQL c... |
| CVE-2006-2761 | — | — | 1.2% | Jun 2, 2006 | SQL injection vulnerability in Hitachi HITSENSER3 HITSENSER3/PRP, HITSENSER3/PUP, HITSENSER3/STP, and HITSENSER3/EUP all... |
| CVE-2006-2762 | — | — | 2.1% | Jun 2, 2006 | PHP remote file inclusion vulnerability in includes/config.php in WebCalendar 1.0.3 allows remote attackers to execute a... |
| CVE-2006-2763 | — | — | 2.8% | Jun 2, 2006 | SQL injection vulnerability in Pre News Manager 1.0 allows remote attackers to execute arbitrary SQL commands via the (1... |
| CVE-2006-2764 | — | — | 1.1% | Jun 2, 2006 | Cross-site scripting (XSS) vulnerability in GuestbookXL 1.3 allows remote attackers to inject arbitrary web script or HT... |
| CVE-2006-2765 | — | — | 1.2% | Jun 2, 2006 | Cross-site scripting (XSS) vulnerability in news_information.php in Interlink Advantage allows remote attackers to injec... |
| CVE-2006-2309 | — | — | 1.6% | Jun 2, 2006 | The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests conta... |
| CVE-2006-2308 | — | — | 1.6% | Jun 2, 2006 | Directory traversal vulnerability in the IMAP service in EServ/3 3.25 allows remote authenticated users to read other us... |
| CVE-2006-2754 | — | — | 4.4% | Jun 1, 2006 | Stack-based buffer overflow in st.c in slurpd for OpenLDAP before 2.3.22 might allow attackers to execute arbitrary code... |
| CVE-2006-2753 | — | — | 3.2% | Jun 1, 2006 | SQL injection vulnerability in MySQL 4.1.x before 4.1.20 and 5.0.x before 5.0.22 allows context-dependent attackers to e... |
| CVE-2006-2735 | — | — | 6.9% | Jun 1, 2006 | PHP remote file inclusion vulnerability in language/lang_english/lang_activity.php in Activity MOD Plus (Amod) 1.1.0, as... |
| CVE-2006-2734 | — | — | 1.5% | Jun 1, 2006 | enter.asp in Mini-Nuke 2.3 and earlier makes it easier for remote attackers to conduct password guessing attacks by sett... |
| CVE-2006-2733 | — | — | 1.4% | Jun 1, 2006 | membership.asp in Mini-Nuke 2.3 and earlier uses plaintext security codes, which allows remote attackers to register mul... |
| CVE-2006-2732 | — | — | 2.0% | Jun 1, 2006 | SQL injection vulnerability in Your_Account.asp in Mini-Nuke 2.3 and earlier allows remote attackers to execute arbitrar... |
| CVE-2006-2731 | — | — | 4.0% | Jun 1, 2006 | Multiple SQL injection vulnerabilities in Enigma Haber 4.3 and earlier allow remote attackers to execute arbitrary SQL c... |
| CVE-2006-2730 | — | — | 2.6% | Jun 1, 2006 | PHP remote file inclusion vulnerability in admin/lib_action_step.php in Hot Open Tickets (HOT) 11012004_ver2f, when regi... |
| CVE-2006-2729 | — | — | 1.1% | Jun 1, 2006 | Cross-site scripting (XSS) vulnerability in superalbum/index.php in Photoalbum B&W 1.3 allows remote attackers to inject... |
| CVE-2006-2728 | — | — | 1.9% | Jun 1, 2006 | Cross-site scripting (XSS) vulnerability in superalbum/index.php in Photoalbum B&W 1.3 allows remote attackers to inject... |
| CVE-2006-2727 | — | — | 1.7% | Jun 1, 2006 | home/register.php in Eggblog before 3.0 allows remote attackers to change the password of administrators and possibly ot... |
| CVE-2006-2726 | — | — | 19.2% | Jun 1, 2006 | PHP remote file inclusion vulnerability in Fastpublish CMS 1.6.9.d allows remote attackers to include arbitrary files vi... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now