2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-2136SQL injection vulnerability in news.php in AZNEWS allows remote attackers to execute arbitrary SQL commands via the ID p...
CVE-2006-2134PHP remote file inclusion vulnerability in /includes/kb_constants.php in Knowledge Base Mod for PHPbb 2.0.2 and earlier ...
CVE-2006-2132SQL injection vulnerability in detail.asp in DUclassified allows remote attackers to execute arbitrary SQL commands via ...
CVE-2006-2131include/class_poll.php in Advanced Poll 2.0.4 uses the HTTP_X_FORWARDED_FOR (X-Forwarded-For HTTP header) to identify th...
CVE-2006-2130SQL injection vulnerability in include/class_poll.php in Advanced Poll 2.0.4 allows remote attackers to execute arbitrar...
CVE-2006-2129Direct static code injection vulnerability in Pro Publish 2.0 allows remote authenticated administrators to execute arbi...
CVE-2006-2128Multiple SQL injection vulnerabilities in Pro Publish 2.0 allow remote attackers to execute arbitrary SQL commands via t...
CVE-2006-2127SQL injection vulnerability in weblog_posting.php in Blog Mod 0.2.x allows remote attackers to execute arbitrary SQL com...
CVE-2006-2133SQL injection vulnerability in index.php in BoonEx Barracuda 1.1 and earlier allows remote attackers to execute arbitrar...
CVE-2006-2124Multiple cross-site scripting (XSS) vulnerabilities in SunShop 3.5 and earlier allow remote attackers to inject arbitrar...
CVE-2006-2123Multiple SQL injection vulnerabilities in the report interface in Network Administration Visualized (NAV) before 3.0.1 a...
CVE-2006-2122PHP remote file inclusion vulnerability in index.php in CoolMenus allows remote attackers to execute arbitrary code via ...
CVE-2006-2121PHP remote file include vulnerability in admin/config_settings.tpl.php in I-RATER Platinum allows remote attackers to ex...
CVE-2006-2120The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafte...
CVE-2006-2126SQL injection vulnerability in pocategories.php in MaxTrade 1.0.1 and earlier allows remote attackers to execute arbitra...
CVE-2006-2125Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-3779. Reason: This candidate is a duplicate of...
CVE-2006-2116planetGallery allows remote attackers to gain administrator privileges via a direct request to admin/gallery_admin.php.
CVE-2006-2119PHP remote file inclusion vulnerability in event/index.php in Artmedic Event allows remote attackers to execute arbitrar...
CVE-2006-2118JMK's Picture Gallery allows remote attackers to bypass authentication via a direct request to admin_gallery.php3, possi...
CVE-2006-2117Cross-site scripting (XSS) vulnerability in Thyme 1.3 allows remote attackers to inject arbitrary web script or HTML via...
CVE-2006-2115Format string vulnerability in SWS web Server 0.1.7 allows remote attackers to execute arbitrary code via unspecified ve...
CVE-2006-2114Buffer overflow in SWS web Server 0.1.7 allows remote attackers to execute arbitrary code via a long request.
CVE-2006-2111A component in Microsoft Outlook Express 6 allows remote attackers to bypass domain restrictions and obtain sensitive in...
CVE-2006-2110Virtual Private Server (Vserver) 2.0.x before 2.0.2-rc18 and 2.1.x before 2.1.1-rc18 provides certain context capabiliti...
CVE-2006-1989Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now