2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-6904 | — | — | 0.8% | Dec 31, 2006 | Unspecified vulnerability in the Broadcom Bluetooth stack allows remote attackers to gain administrative access (aka Rem... |
| CVE-2006-6862 | — | — | 1.1% | Dec 31, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in Outfront Spooky Login 2.7 allow remote attackers to inject arbitr... |
| CVE-2006-4581 | — | — | 1.2% | Dec 31, 2006 | Unrestricted file upload vulnerability in The Address Book 1.04e validates the Content-Type header but not the file exte... |
| CVE-2006-5749 | — | — | 0.4% | Dec 31, 2006 | The isdn_ppp_ccp_reset_alloc_state function in drivers/isdn/isdn_ppp.c in the Linux 2.4 kernel before 2.4.34-rc4 does no... |
| CVE-2006-6865 | — | — | 4.4% | Dec 31, 2006 | Directory traversal vulnerability in SAFileUpSamples/util/viewsrc.asp in SoftArtisans FileUp (SAFileUp) 5.0.14 allows re... |
| CVE-2006-6831 | — | — | 0.9% | Dec 31, 2006 | SQL injection vulnerability in faqDsp.asp in aFAQ 1.0 allows remote attackers to execute arbitrary SQL commands via the ... |
| CVE-2006-6868 | — | — | 1.2% | Dec 31, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in Zen Cart Web Shopping Cart before 1.3.7 allow remote attackers to... |
| CVE-2006-6869 | — | — | 3.2% | Dec 31, 2006 | Directory traversal vulnerability in includes/search/search_mdforum.php in MAXdev MDForum 2.0.1 and earlier, when magic_... |
| CVE-2006-6836 | — | — | 1.5% | Dec 31, 2006 | Multiple unspecified vulnerabilities in osp-cert in IBM OS/400 V5R3M0 have unspecified impact and attack vectors, relate... |
| CVE-2006-6834 | — | — | 1.2% | Dec 31, 2006 | Multiple unspecified vulnerabilities in Joomla! before 1.0.12 have unknown impact and attack vectors related to (1) "unn... |
| CVE-2006-5755 | — | — | 0.4% | Dec 31, 2006 | Linux kernel before 2.6.18, when running on x86_64 systems, does not properly save or restore EFLAGS during a context sw... |
| CVE-2006-6827 | — | — | 3.3% | Dec 31, 2006 | Flash8b.ocx in Macromedia Flash 8 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a... |
| CVE-2006-6828 | — | — | 1.0% | Dec 31, 2006 | Multiple SQL injection vulnerabilities in Efkan Forum 1.0 and earlier allow remote attackers to execute arbitrary SQL co... |
| CVE-2006-4727 | — | — | 1.1% | Dec 31, 2006 | Cross-site scripting (XSS) vulnerability in emfadmin/statusView.do in Tumbleweed EMF Administration Module 6.2.2 Build 4... |
| CVE-2006-6835 | — | — | 1.1% | Dec 31, 2006 | SQL injection vulnerability in Journal.inc.php in Neocrome Land Down Under (LDU) 8.x and earlier allows remote attackers... |
| CVE-2006-6861 | — | — | 1.3% | Dec 31, 2006 | Multiple SQL injection vulnerabilities in Outfront Spooky Login 2.7 allow remote attackers to execute arbitrary SQL comm... |
| CVE-2006-6895 | — | — | 0.7% | Dec 31, 2006 | The Bluetooth stack in the Sony Ericsson T60 does not properly implement "Limited discoverable" mode, which allows remot... |
| CVE-2006-6905 | — | — | 2.3% | Dec 31, 2006 | Unspecified vulnerability in the Widcomm Bluetooth stack allows remote attackers to gain administrative access (aka Remo... |
| CVE-2006-6488 | — | — | 7.8% | Dec 31, 2006 | Stack-based buffer overflow in the DoModal function in the Dialog Wrapper Module ActiveX control (DlgWrapper.dll) before... |
| CVE-2006-6894 | — | — | 1.3% | Dec 31, 2006 | Multiple unspecified vulnerabilities in SPINE before 1.2 have unknown impact and attack vectors, related to (1) "Placeho... |
| CVE-2006-5265 | — | — | 10.4% | Dec 31, 2006 | Unspecified vulnerability in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allows remote attackers to ca... |
| CVE-2006-6832 | — | — | 1.3% | Dec 31, 2006 | Cross-site scripting (XSS) vulnerability in Joomla! before 1.0.12 allows remote attackers to inject arbitrary web script... |
| CVE-2006-6870 | — | — | 2.3% | Dec 31, 2006 | The consume_labels function in avahi-core/dns.c in Avahi before 0.6.16 allows remote attackers to cause a denial of serv... |
| CVE-2006-6866 | — | — | 3.0% | Dec 31, 2006 | STphp EasyNews PRO 4.0 stores sensitive information under the web root with insufficient access control, which allows re... |
| CVE-2006-6871 | — | — | 1.9% | Dec 31, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in eNdonesia 8.4 allow remote attackers to inject arbitrary web scri... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now