2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-2136 | — | — | 1.3% | May 2, 2006 | SQL injection vulnerability in news.php in AZNEWS allows remote attackers to execute arbitrary SQL commands via the ID p... |
| CVE-2006-2134 | — | — | 9.5% | May 2, 2006 | PHP remote file inclusion vulnerability in /includes/kb_constants.php in Knowledge Base Mod for PHPbb 2.0.2 and earlier ... |
| CVE-2006-2132 | — | — | 0.9% | May 1, 2006 | SQL injection vulnerability in detail.asp in DUclassified allows remote attackers to execute arbitrary SQL commands via ... |
| CVE-2006-2131 | — | — | 1.6% | May 1, 2006 | include/class_poll.php in Advanced Poll 2.0.4 uses the HTTP_X_FORWARDED_FOR (X-Forwarded-For HTTP header) to identify th... |
| CVE-2006-2130 | — | — | 1.1% | May 1, 2006 | SQL injection vulnerability in include/class_poll.php in Advanced Poll 2.0.4 allows remote attackers to execute arbitrar... |
| CVE-2006-2129 | — | — | 1.2% | May 1, 2006 | Direct static code injection vulnerability in Pro Publish 2.0 allows remote authenticated administrators to execute arbi... |
| CVE-2006-2128 | — | — | 1.9% | May 1, 2006 | Multiple SQL injection vulnerabilities in Pro Publish 2.0 allow remote attackers to execute arbitrary SQL commands via t... |
| CVE-2006-2127 | — | — | 1.5% | May 1, 2006 | SQL injection vulnerability in weblog_posting.php in Blog Mod 0.2.x allows remote attackers to execute arbitrary SQL com... |
| CVE-2006-2133 | — | — | 1.1% | May 1, 2006 | SQL injection vulnerability in index.php in BoonEx Barracuda 1.1 and earlier allows remote attackers to execute arbitrar... |
| CVE-2006-2124 | — | — | 1.9% | May 1, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in SunShop 3.5 and earlier allow remote attackers to inject arbitrar... |
| CVE-2006-2123 | — | — | 1.3% | May 1, 2006 | Multiple SQL injection vulnerabilities in the report interface in Network Administration Visualized (NAV) before 3.0.1 a... |
| CVE-2006-2122 | — | — | 4.3% | May 1, 2006 | PHP remote file inclusion vulnerability in index.php in CoolMenus allows remote attackers to execute arbitrary code via ... |
| CVE-2006-2121 | — | — | 3.8% | May 1, 2006 | PHP remote file include vulnerability in admin/config_settings.tpl.php in I-RATER Platinum allows remote attackers to ex... |
| CVE-2006-2120 | — | — | 0.8% | May 1, 2006 | The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafte... |
| CVE-2006-2126 | — | — | 1.2% | May 1, 2006 | SQL injection vulnerability in pocategories.php in MaxTrade 1.0.1 and earlier allows remote attackers to execute arbitra... |
| CVE-2006-2125 | — | — | — | May 1, 2006 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-3779. Reason: This candidate is a duplicate of... |
| CVE-2006-2116 | — | — | 2.7% | May 1, 2006 | planetGallery allows remote attackers to gain administrator privileges via a direct request to admin/gallery_admin.php. |
| CVE-2006-2119 | — | — | 5.9% | May 1, 2006 | PHP remote file inclusion vulnerability in event/index.php in Artmedic Event allows remote attackers to execute arbitrar... |
| CVE-2006-2118 | — | — | 1.7% | May 1, 2006 | JMK's Picture Gallery allows remote attackers to bypass authentication via a direct request to admin_gallery.php3, possi... |
| CVE-2006-2117 | — | — | 1.4% | May 1, 2006 | Cross-site scripting (XSS) vulnerability in Thyme 1.3 allows remote attackers to inject arbitrary web script or HTML via... |
| CVE-2006-2115 | — | — | 3.3% | May 1, 2006 | Format string vulnerability in SWS web Server 0.1.7 allows remote attackers to execute arbitrary code via unspecified ve... |
| CVE-2006-2114 | — | — | 3.7% | May 1, 2006 | Buffer overflow in SWS web Server 0.1.7 allows remote attackers to execute arbitrary code via a long request. |
| CVE-2006-2111 | — | — | 40.3% | May 1, 2006 | A component in Microsoft Outlook Express 6 allows remote attackers to bypass domain restrictions and obtain sensitive in... |
| CVE-2006-2110 | — | — | 0.5% | May 1, 2006 | Virtual Private Server (Vserver) 2.0.x before 2.0.2-rc18 and 2.1.x before 2.1.1-rc18 provides certain context capabiliti... |
| CVE-2006-1989 | — | — | 5.8% | May 1, 2006 | Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now