2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-6877 | — | — | 2.1% | Dec 31, 2006 | Directory traversal vulnerability in index.php in Matteo Lucarelli 3editor CMS 0.42 and earlier, when register_globals i... |
| CVE-2006-6895 | — | — | 0.7% | Dec 31, 2006 | The Bluetooth stack in the Sony Ericsson T60 does not properly implement "Limited discoverable" mode, which allows remot... |
| CVE-2006-6861 | — | — | 1.3% | Dec 31, 2006 | Multiple SQL injection vulnerabilities in Outfront Spooky Login 2.7 allow remote attackers to execute arbitrary SQL comm... |
| CVE-2006-5749 | — | — | 0.4% | Dec 31, 2006 | The isdn_ppp_ccp_reset_alloc_state function in drivers/isdn/isdn_ppp.c in the Linux 2.4 kernel before 2.4.34-rc4 does no... |
| CVE-2006-4580 | — | — | 1.4% | Dec 31, 2006 | register.php in The Address Book 1.04e allows remote attackers to bypass the "Allow User Self-Registration" setting and ... |
| CVE-2006-6859 | — | — | 1.8% | Dec 31, 2006 | SQL injection vulnerability in coupon_detail.asp in Website Designs For Less Click N' Print Coupons 2005.01 and earlier ... |
| CVE-2006-6879 | — | — | 1.8% | Dec 31, 2006 | Unrestricted file upload vulnerability in admin/uploads.php in PHP-Update 2.7 and earlier allows remote authenticated us... |
| CVE-2006-6860 | — | — | 5.4% | Dec 31, 2006 | Buffer overflow in the sendToMythTV function in MythControlServer.c in MythControl 1.0 and earlier allows remote attacke... |
| CVE-2006-6854 | — | — | 2.3% | Dec 31, 2006 | The qcamvc_video_init function in qcamvc.c in De Marchi Daniele QuickCam VC Linux device driver (aka quickcam-vc) 1.0.9 ... |
| CVE-2006-6102 | — | — | 3.4% | Dec 31, 2006 | Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFr... |
| CVE-2006-6144 | — | — | 5.2% | Dec 31, 2006 | The "mechglue" abstraction interface of the GSS-API library for Kerberos 5 1.5 through 1.5.1, as used in Kerberos admini... |
| CVE-2006-4578 | — | — | 1.4% | Dec 31, 2006 | export.php in The Address Book 1.04e writes username and password hash information into a publicly accessible file when ... |
| CVE-2006-6844 | — | — | 1.3% | Dec 31, 2006 | Cross-site scripting (XSS) vulnerability in the optional user comment module in CMS Made Simple 1.0.2 allows remote atta... |
| CVE-2006-6143 | — | — | 7.9% | Dec 31, 2006 | The RPC library in Kerberos 5 1.4 through 1.4.4, and 1.5 through 1.5.1, as used in Kerberos administration daemon (kadmi... |
| CVE-2006-6862 | — | — | 1.1% | Dec 31, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in Outfront Spooky Login 2.7 allow remote attackers to inject arbitr... |
| CVE-2006-6829 | — | — | 1.3% | Dec 31, 2006 | Efkan Forum 1.0 and earlier store sensitive information under the web root with insufficient access control, which allow... |
| CVE-2006-6872 | — | — | 3.0% | Dec 31, 2006 | Directory traversal vulnerability in mod.php in eNdonesia 8.4 allows remote attackers to read arbitrary files via a .. (... |
| CVE-2006-6103 | — | — | 0.4% | Dec 31, 2006 | Integer overflow in the ProcDbeSwapBuffers function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree... |
| CVE-2006-5755 | — | — | 0.4% | Dec 31, 2006 | Linux kernel before 2.6.18, when running on x86_64 systems, does not properly save or restore EFLAGS during a context sw... |
| CVE-2006-6915 | — | — | 1.4% | Dec 31, 2006 | ftpd in IBM AIX 5.2.0 and 5.3.0 allows remote authenticated users to cause a denial of service (port exhaustion) via uns... |
| CVE-2006-4577 | — | — | 1.6% | Dec 31, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in The Address Book 1.04e allow remote attackers to inject arbitrary... |
| CVE-2006-6843 | — | — | 1.2% | Dec 31, 2006 | PHP remote file inclusion vulnerability in the BE IT EasyPartner 0.0.9 beta component for Joomla! allows remote attacker... |
| CVE-2006-6873 | — | — | 1.2% | Dec 31, 2006 | Multiple SQL injection vulnerabilities in mod.php in eNdonesia 8.4 allow remote attackers to execute arbitrary SQL comma... |
| CVE-2006-4579 | — | — | 1.7% | Dec 31, 2006 | Directory traversal vulnerability in users.php in The Address Book 1.04e allows remote attackers to include arbitrary fi... |
| CVE-2006-6832 | — | — | 1.3% | Dec 31, 2006 | Cross-site scripting (XSS) vulnerability in Joomla! before 1.0.12 allows remote attackers to inject arbitrary web script... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now