2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-6839 | — | — | 1.6% | Dec 31, 2006 | Unspecified vulnerability in phpBB before 2.0.22 has unknown impact and remote attack vectors related to "criteria for '... |
| CVE-2006-6103 | — | — | 0.4% | Dec 31, 2006 | Integer overflow in the ProcDbeSwapBuffers function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree... |
| CVE-2006-6885 | — | — | 7.2% | Dec 31, 2006 | An ActiveX control in SwDir.dll in Macromedia Shockwave 10 allows remote attackers to cause a denial of service (Interne... |
| CVE-2006-4575 | — | — | 2.1% | Dec 31, 2006 | Multiple SQL injection vulnerabilities in The Address Book 1.04e allow remote attackers to execute arbitrary SQL command... |
| CVE-2006-4576 | — | — | 1.3% | Dec 31, 2006 | Cross-site scripting (XSS) vulnerability in The Address Book 1.04e allows remote attackers to inject arbitrary web scrip... |
| CVE-2006-4582 | — | — | 1.2% | Dec 31, 2006 | Cross-site request forgery (CSRF) vulnerability in The Address Book 1.04e allows remote attackers to perform unauthorize... |
| CVE-2006-4580 | — | — | 1.4% | Dec 31, 2006 | register.php in The Address Book 1.04e allows remote attackers to bypass the "Allow User Self-Registration" setting and ... |
| CVE-2006-6102 | — | — | 3.4% | Dec 31, 2006 | Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFr... |
| CVE-2006-4577 | — | — | 1.6% | Dec 31, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in The Address Book 1.04e allow remote attackers to inject arbitrary... |
| CVE-2006-4578 | — | — | 1.4% | Dec 31, 2006 | export.php in The Address Book 1.04e writes username and password hash information into a publicly accessible file when ... |
| CVE-2006-6912 | — | — | 1.0% | Dec 31, 2006 | SQL injection vulnerability in phpMyFAQ 1.6.7 and earlier allows remote attackers to execute arbitrary SQL commands via ... |
| CVE-2006-7233 | — | — | 1.2% | Dec 31, 2006 | Cross-site scripting (XSS) vulnerability in the login form (login.jsp) of the admin console in Openfire (formerly Wildfi... |
| CVE-2006-6910 | — | — | 3.0% | Dec 31, 2006 | formbankcgi.exe in Fersch Formbankserver 1.9, when the PATH_INFO begins with Abfrage, allows remote attackers to cause a... |
| CVE-2006-4097 | — | — | 4.1% | Dec 31, 2006 | Multiple unspecified vulnerabilities in the CSRadius service in Cisco Secure Access Control Server (ACS) for Windows bef... |
| CVE-2006-4098 | — | — | 12.7% | Dec 31, 2006 | Stack-based buffer overflow in the CSRadius service in Cisco Secure Access Control Server (ACS) for Windows before 4.1 a... |
| CVE-2006-4695 | — | — | 40.1% | Dec 31, 2006 | Unspecified vulnerability in certain COM objects in Microsoft Office Web Components 2000 allows user-assisted remote att... |
| CVE-2006-6879 | — | — | 1.8% | Dec 31, 2006 | Unrestricted file upload vulnerability in admin/uploads.php in PHP-Update 2.7 and earlier allows remote authenticated us... |
| CVE-2006-5266 | — | — | 15.7% | Dec 31, 2006 | Multiple buffer overflows in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allow remote attackers to exe... |
| CVE-2006-4220 | — | — | 1.9% | Dec 31, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in webacc in Novell GroupWise WebAccess before 7 Support Pack 3 Publ... |
| CVE-2006-6857 | — | — | 0.8% | Dec 31, 2006 | Cross-site scripting (XSS) vulnerability in modules/credits/credits.php in Docebo LMS allows remote attackers to inject ... |
| CVE-2006-6854 | — | — | 2.3% | Dec 31, 2006 | The qcamvc_video_init function in qcamvc.c in De Marchi Daniele QuickCam VC Linux device driver (aka quickcam-vc) 1.0.9 ... |
| CVE-2006-6853 | — | — | 8.0% | Dec 31, 2006 | Buffer overflow in Durian Web Application Server 3.02 freeware on Windows allows remote attackers to execute arbitrary c... |
| CVE-2006-6855 | — | — | 3.2% | Dec 31, 2006 | AIDeX Mini-WebServer 1.1 early release 3 allows remote attackers to cause a denial of service (daemon crash) via a flood... |
| CVE-2006-6856 | — | — | 2.4% | Dec 31, 2006 | Direct static code injection vulnerability in WebText CMS 0.4.5.2 and earlier allows remote attackers to inject arbitrar... |
| CVE-2006-6859 | — | — | 1.8% | Dec 31, 2006 | SQL injection vulnerability in coupon_detail.asp in Website Designs For Less Click N' Print Coupons 2005.01 and earlier ... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now