2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-1621 | — | — | 1.3% | Apr 5, 2006 | Directory traversal vulnerability in admin/folders/saveuploadfiles.asp in Hosting Controller 2002 RC 1 allows remote aut... |
| CVE-2006-1622 | — | — | 1.2% | Apr 5, 2006 | Cross-site scripting (XSS) vulnerability in PHPSelect linksubmit allows remote attackers to inject arbitrary web script ... |
| CVE-2006-0559 | — | — | 6.1% | Apr 4, 2006 | Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execu... |
| CVE-2006-1611 | — | — | 1.6% | Apr 4, 2006 | Directory traversal vulnerability in KGB Archiver before 1.1.5.22 allows remote attackers to overwrite arbitrary files w... |
| CVE-2006-1613 | — | — | 1.8% | Apr 4, 2006 | Multiple SQL injection vulnerabilities in aWebNews 1.0 allow remote attackers to execute arbitrary SQL commands via the ... |
| CVE-2006-1612 | — | — | 2.3% | Apr 4, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in visview.php in aWebNews 1.0 allow remote attackers to inject arbi... |
| CVE-2006-1610 | — | — | 7.5% | Apr 4, 2006 | PHP remote file inclusion vulnerability in lib/armygame.php in SQuery 4.5 and earlier, as used in products such as Auton... |
| CVE-2006-1609 | — | — | 1.6% | Apr 4, 2006 | Unspecified vulnerability in Hitachi XFIT/S, XFIT/S/JCA, XFIT/S/ZGN, and XFIT/S ZENGIN TCP/IP Procedure allows remote at... |
| CVE-2006-1607 | — | — | 1.5% | Apr 4, 2006 | Unspecified vulnerability in the banner module in Exponent CMS before 0.96.5 RC 1 allows "php injection" via unknown att... |
| CVE-2006-1606 | — | — | 1.2% | Apr 4, 2006 | Unspecified vulnerability in the image module in Exponent CMS before 0.96.5 RC 1 allows "directory disclosure" with unkn... |
| CVE-2006-1605 | — | — | 2.8% | Apr 4, 2006 | Unspecified vulnerability in the image module in Exponent CMS before 0.96.5 RC 1 allows remote attackers to execute arbi... |
| CVE-2006-1604 | — | — | 1.7% | Apr 4, 2006 | Unspecified vulnerability in Exponent CMS before 0.96.5 RC 1 has unknown impact and remote attack vectors related to var... |
| CVE-2006-1603 | — | — | 1.3% | Apr 4, 2006 | Cross-site scripting (XSS) vulnerability in profile.php in phpBB 2.0.19 allows remote attackers to inject arbitrary web ... |
| CVE-2006-1602 | — | — | 1.8% | Apr 4, 2006 | PHP remote file inclusion vulnerability in includes/functions_common.php in the VWar Account module (vWar_Account) in PH... |
| CVE-2006-1601 | — | — | 0.3% | Apr 4, 2006 | Unspecified vulnerability in SunPlex Manager in Sun Cluster 3.1 4/04 allows local users with solaris.cluster.gui authori... |
| CVE-2006-1600 | — | — | 1.1% | Apr 3, 2006 | SQL injection vulnerability in category.php in PhpWebGallery 1.4.1 allows remote attackers to execute arbitrary SQL comm... |
| CVE-2006-1599 | — | — | 3.5% | Apr 3, 2006 | Unspecified vulnerability in VCEngine.php in v-creator before 1.3-pre3, when the VC_CRYPTO_METHOD option is OPENSSL, all... |
| CVE-2006-1598 | — | — | 1.9% | Apr 3, 2006 | AN HTTPD 1.42n, and possibly other versions before 1.42p, allows remote attackers to obtain source code of scripts via c... |
| CVE-2006-1435 | — | — | 1.3% | Apr 3, 2006 | Cross-site scripting (XSS) vulnerability in genmessage.php in Accounting Receiving and Inventory Administration (ARIA) 0... |
| CVE-2006-1433 | — | — | 2.1% | Apr 3, 2006 | Annuaire (Directory) 1.0 allows remote attackers to obtain sensitive information via a direct request to include/lang-en... |
| CVE-2006-1438 | — | — | 1.5% | Apr 3, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in Andy's PHP Knowledgebase (aphpkb) 0.57 allow remote attackers to ... |
| CVE-2006-1434 | — | — | 1.3% | Apr 3, 2006 | Cross-site scripting (XSS) vulnerability in inscription.php in Annuaire (Directory) 1.0 allows remote attackers to injec... |
| CVE-2006-1591 | — | — | 7.0% | Apr 3, 2006 | Heap-based buffer overflow in Microsoft Windows Help winhlp32.exe allows user-assisted attackers to execute arbitrary co... |
| CVE-2006-1588 | — | — | 0.3% | Apr 3, 2006 | The bridge ioctl (if_bridge code) in NetBSD 1.6 through 3.0 does not clear sensitive memory before copying ioctl results... |
| CVE-2006-1596 | — | — | 2.2% | Apr 3, 2006 | PHP remote file inclusion vulnerability in learnPath/include/scormExport.inc.php in Claroline 1.7.4 and earlier allows r... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now