2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-2553Cross-site scripting (XSS) vulnerability in Jemscripts DownloadControl 1.0 allows remote attackers to inject arbitrary H...
CVE-2006-2554Buffer overflow in the tell_player_surr_changes function in Genecys 0.2 and earlier might allow remote attackers to exec...
CVE-2006-2555The parse_command function in Genecys 0.2 and earlier allows remote attackers to cause a denial of service (crash) via a...
CVE-2006-2556Cross-site scripting (XSS) vulnerability in Florian Amrhein NewsPortal before 0.37, and possibly TR Newsportal (TRanx re...
CVE-2006-2557PHP remote file inclusion vulnerability in extras/poll/poll.php in Florian Amrhein NewsPortal before 0.37, and TR Newspo...
CVE-2006-2558Cross-site scripting (XSS) vulnerability in IpLogger 1.7 and earlier allows remote attackers to inject arbitrary HTML or...
CVE-2006-2559Linksys WRT54G Wireless-G Broadband Router allows remote attackers to bypass access restrictions and conduct unauthorize...
CVE-2006-2560Sitecom WL-153 router firmware before 1.38 allows remote attackers to bypass access restrictions and conduct unauthorize...
CVE-2006-2561Edimax BR-6104K router allows remote attackers to bypass access restrictions and conduct unauthorized operations via a U...
CVE-2006-2562ZyXEL P-335WT router allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPn...
CVE-2006-2552Jemscripts DownloadControl 1.0 allows remote attackers to obtain sensitive information via an invalid dcid parameter to ...
CVE-2006-1466Xcode Tools before 2.3 for Mac OS X 10.4, when running the WebObjects plugin, allows remote attackers to access or modif...
CVE-2006-2551Unspecified vulnerability in the kernel in HP-UX B.11.00 allows local users to cause an unspecified denial of service vi...
CVE-2006-2544Multiple SQL injection vulnerabilities in Xtreme Topsites 1.1, with magic_quotes_gpc disabled, allow remote attackers to...
CVE-2006-2550perlpodder before 0.5 allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast...
CVE-2006-2548Prodder before 0.5, and perlpodder before 0.5, allows remote attackers to execute arbitrary code via shell metacharacter...
CVE-2006-2547Unspecified vulnerability in the sapdba command in SAP with Informix before 700, and 700 up to patch 100, allows local u...
CVE-2006-2546A recommended admin password reset mechanism for BEA WebLogic Server 8.1, when followed before October 10, 2005, causes ...
CVE-2006-2545Multiple cross-site scripting (XSS) vulnerabilities in Xtreme Topsites 1.1 allow remote attackers to inject arbitrary we...
CVE-2006-2543Xtreme Topsites 1.1 allows remote attackers to trigger MySQL errors and possibly conduct SQL injection attacks via unspe...
CVE-2006-2542xmcdconfig in xmcd for Debian GNU/Linux 2.6-17.1 creates /var/lib/cddb and /var/lib/xmcd/discog with world writable perm...
CVE-2006-2541SQL injection vulnerability in settings.asp in Zixforum 1.12 allows remote attackers to execute arbitrary SQL commands v...
CVE-2006-2540Privacy leak in install.php for Diesel PHP Job Site sends sensitive information such as user credentials to an e-mail ad...
CVE-2006-1861Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service (crash) and possib...
CVE-2006-0747Integer underflow in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a font file wi...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now