2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-2499 | — | — | 1.3% | May 20, 2006 | SQL injection vulnerability in default.asp in CodeAvalanche News (CANews) 1.2 allows remote attackers to execute arbitra... |
| CVE-2006-2489 | — | — | 5.4% | May 19, 2006 | Integer overflow in CGI scripts in Nagios 1.x before 1.4.1 and 2.x before 2.3.1 allows remote attackers to cause a denia... |
| CVE-2006-2483 | — | — | 7.5% | May 19, 2006 | PHP remote file inclusion vulnerability in cart_content.php in Squirrelcart 2.2.2 and earlier allows remote attackers to... |
| CVE-2006-2484 | — | — | 1.2% | May 19, 2006 | Cross-site scripting (XSS) vulnerability in index.html in IceWarp WebMail 5.5.1 and earlier allows remote attackers to i... |
| CVE-2006-2485 | — | — | 4.4% | May 19, 2006 | PHP remote file inclusion vulnerability in includes/class_template.php in Quezza 1.0 and earlier, and possibly 1.1.0 all... |
| CVE-2006-2486 | — | — | 1.2% | May 19, 2006 | SQL injection vulnerability in find.php in YapBB 1.2 Beta2 and earlier allows remote attackers to execute arbitrary SQL ... |
| CVE-2006-2487 | — | — | 4.2% | May 19, 2006 | Multiple PHP remote file inclusion vulnerabilities in ScozNews 1.2.1 and earlier allow remote attackers to execute arbit... |
| CVE-2006-2488 | — | — | 1.2% | May 19, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in Spymac WebOS (WOS) 5.0 allow remote attackers to inject arbitrary... |
| CVE-2006-2490 | — | — | 2.9% | May 19, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in Mobotix IP Network Cameras M1 1.9.4.7 and M10 2.0.5.2, and other ... |
| CVE-2006-2491 | — | — | 2.8% | May 19, 2006 | Cross-site scripting (XSS) vulnerability in (1) index.php and (2) bmc/admin.php in BoastMachine (bMachine) 3.1 and earli... |
| CVE-2006-1856 | — | — | 2.9% | May 19, 2006 | Certain modifications to the Linux kernel 2.6.16 and earlier do not add the appropriate Linux Security Modules (LSM) fil... |
| CVE-2006-0039 | — | — | 0.3% | May 19, 2006 | Race condition in the do_add_counters function in netfilter for Linux kernel 2.6.16 allows local users with CAP_NET_ADMI... |
| CVE-2006-2480 | — | — | 7.6% | May 19, 2006 | Format string vulnerability in Dia 0.94 allows user-assisted attackers to cause a denial of service (crash) and possibly... |
| CVE-2006-2312 | — | — | 4.1% | May 19, 2006 | Argument injection vulnerability in the URI handler in Skype 2.0.*.104 and 2.5.*.0 through 2.5.*.78 for Windows allows r... |
| CVE-2006-0059 | — | — | 4.7% | May 19, 2006 | Heap-based buffer overflow in the ISO Transport Service over TCP (RFC 1006) implementation of LiveData ICCP Server befor... |
| CVE-2006-2474 | — | — | 1.3% | May 19, 2006 | SQL injection vulnerability in lshop.cgi in Cosmoshop 8.11.106 and earlier allows remote attackers to execute arbitrary ... |
| CVE-2006-2475 | — | — | 1.7% | May 19, 2006 | Directory traversal vulnerability in (1) edit_mailtexte.cgi and (2) bestmail.cgi in Cosmoshop 8.11.106 and earlier allow... |
| CVE-2006-2476 | — | — | 2.2% | May 19, 2006 | Bitrix Site Manager 4.1.x stores updater.log under the web document root with insufficient access control, which allows ... |
| CVE-2006-2477 | — | — | 1.1% | May 19, 2006 | Cross-site scripting (XSS) vulnerability in the administrative interface Bitrix Site Manager 4.1.x allows remote attacke... |
| CVE-2006-2479 | — | — | 1.9% | May 19, 2006 | The Update functionality in Bitrix Site Manager 4.1.x does not verify the authenticity of downloaded updates, which allo... |
| CVE-2006-2478 | — | — | 1.6% | May 19, 2006 | Bitrix Site Manager 4.1.x allows remote attackers to redirect users to other websites via a modified back_url during a H... |
| CVE-2006-2473 | — | — | 1.9% | May 19, 2006 | Cross-site scripting (XSS) vulnerability in ow.asp in OpenWiki 0.78 allows remote attackers to inject arbitrary web scri... |
| CVE-2006-2465 | — | — | 5.4% | May 19, 2006 | Buffer overflow in MP3Info 0.8.4 allows attackers to execute arbitrary code via a long command line argument. NOTE: if ... |
| CVE-2006-2472 | — | — | 0.4% | May 19, 2006 | Unspecified vulnerability in BEA WebLogic Server 9.1 and 9.0, 8.1 through SP5, 7.0 through SP6, and 6.1 through SP7 allo... |
| CVE-2006-2471 | — | — | 1.4% | May 19, 2006 | Multiple vulnerabilities in BEA WebLogic Server 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7 leak sensitive inf... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now