2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-2654Directory traversal vulnerability in smbfs smbfs on FreeBSD 4.10 up to 6.1 allows local users to escape chroot restricti...
CVE-2006-2755Cross-site scripting (XSS) vulnerability in index.php in UBBThreads 5.x and earlier allows remote attackers to inject ar...
CVE-2006-2756Eitsop My Web Server 1.0 allows remote attackers to cause a denial of service (application crash) via a long GET request...
CVE-2006-2757Cross-site scripting (XSS) vulnerability in Chipmunk guestbook allows remote attackers to inject arbitrary web script or...
CVE-2006-2758Directory traversal vulnerability in jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary files via a %...
CVE-2006-2760SQL injection vulnerability in modules.php in 4nNukeWare 4nForum 0.91 allows remote attackers to execute arbitrary SQL c...
CVE-2006-2761SQL injection vulnerability in Hitachi HITSENSER3 HITSENSER3/PRP, HITSENSER3/PUP, HITSENSER3/STP, and HITSENSER3/EUP all...
CVE-2006-2762PHP remote file inclusion vulnerability in includes/config.php in WebCalendar 1.0.3 allows remote attackers to execute a...
CVE-2006-2763SQL injection vulnerability in Pre News Manager 1.0 allows remote attackers to execute arbitrary SQL commands via the (1...
CVE-2006-2764Cross-site scripting (XSS) vulnerability in GuestbookXL 1.3 allows remote attackers to inject arbitrary web script or HT...
CVE-2006-2765Cross-site scripting (XSS) vulnerability in news_information.php in Interlink Advantage allows remote attackers to injec...
CVE-2006-2309The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests conta...
CVE-2006-2308Directory traversal vulnerability in the IMAP service in EServ/3 3.25 allows remote authenticated users to read other us...
CVE-2006-2754Stack-based buffer overflow in st.c in slurpd for OpenLDAP before 2.3.22 might allow attackers to execute arbitrary code...
CVE-2006-2753SQL injection vulnerability in MySQL 4.1.x before 4.1.20 and 5.0.x before 5.0.22 allows context-dependent attackers to e...
CVE-2006-2735PHP remote file inclusion vulnerability in language/lang_english/lang_activity.php in Activity MOD Plus (Amod) 1.1.0, as...
CVE-2006-2734enter.asp in Mini-Nuke 2.3 and earlier makes it easier for remote attackers to conduct password guessing attacks by sett...
CVE-2006-2733membership.asp in Mini-Nuke 2.3 and earlier uses plaintext security codes, which allows remote attackers to register mul...
CVE-2006-2732SQL injection vulnerability in Your_Account.asp in Mini-Nuke 2.3 and earlier allows remote attackers to execute arbitrar...
CVE-2006-2731Multiple SQL injection vulnerabilities in Enigma Haber 4.3 and earlier allow remote attackers to execute arbitrary SQL c...
CVE-2006-2730PHP remote file inclusion vulnerability in admin/lib_action_step.php in Hot Open Tickets (HOT) 11012004_ver2f, when regi...
CVE-2006-2729Cross-site scripting (XSS) vulnerability in superalbum/index.php in Photoalbum B&W 1.3 allows remote attackers to inject...
CVE-2006-2728Cross-site scripting (XSS) vulnerability in superalbum/index.php in Photoalbum B&W 1.3 allows remote attackers to inject...
CVE-2006-2727home/register.php in Eggblog before 3.0 allows remote attackers to change the password of administrators and possibly ot...
CVE-2006-2726PHP remote file inclusion vulnerability in Fastpublish CMS 1.6.9.d allows remote attackers to include arbitrary files vi...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now