2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-1498Cross-site scripting (XSS) vulnerability in MediaWiki before 1.5.8 and 1.4.15 allows remote attackers to inject arbitrar...
CVE-2006-1497Directory traversal vulnerability in index.php in ViHor Design allows remote attackers to read arbitrary files via the p...
CVE-2006-1495SQL injection vulnerability in general/sendpassword.php in (1) PHPCollab 2.4 and 2.5.rc3, and (2) NetOffice 2.5.3-pl1 an...
CVE-2006-0459flex.skl in Will Estes and John Millaway Fast Lexical Analyzer Generator (flex) before 2.5.33 does not allocate enough m...
CVE-2006-1491Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remot...
CVE-2006-1493Cross-site scripting (XSS) vulnerability in dir.php in Explorer XP allows remote attackers to inject arbitrary web scrip...
CVE-2006-1492Directory traversal vulnerability in dir.php in Explorer XP allows remote attackers to read arbitrary files via the chem...
CVE-2006-1490PHP before 5.1.3-RC1 might allow remote attackers to obtain portions of memory via crafted binary data sent to a script ...
CVE-2006-1489Multiple SQL injection vulnerabilities in FusionZONE CouponZONE local.cfm in 4.2 and earlier allow remote attackers to e...
CVE-2006-1486Multiple cross-site scripting (XSS) vulnerabilities in index.cfm in realestateZONE 4.2 allow remote attackers to inject ...
CVE-2006-1488ActiveCampaign SupportTrio 2.5 allows remote attackers to obtain the full path of the server via invalid (1) article or ...
CVE-2006-1487Cross-site scripting (XSS) vulnerability in ActiveCampaign SupportTrio 2.50.2 allows remote attackers to inject arbitrar...
CVE-2006-1479Multiple cross-site scripting (XSS) vulnerabilities in Serge Rey gtd-php (aka Getting Things Done) 0.5 allow remote atta...
CVE-2006-1478Directory traversal vulnerability in (1) initiate.php and (2) possibly other PHP scripts in Turnkey Web Tools PHP Live H...
CVE-2006-1477Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools PHP Live Helper 1.8 allow remote attackers to in...
CVE-2006-1474Cross-site scripting (XSS) vulnerability in the "failed" functionality in Raindance Web Conferencing Pro allows remote a...
CVE-2006-1476Windows Firewall in Microsoft Windows XP SP2 produces incorrect application block alerts when the application filename i...
CVE-2006-1484Genius VideoCAM NB Driver does not drop privileges when saving files, which allows local users to gain privileges by ope...
CVE-2006-1483Blazix Web Server before 1.2.6, when running on Windows, allows remote attackers to obtain the source code of JSP files ...
CVE-2006-1485gm-upload.cgi in Greymatter 1.3.1 allows remote authenticated users with upload privileges to execute arbitrary programs...
CVE-2006-1475Windows Firewall in Microsoft Windows XP SP2 does not produce application alerts when an application is executed using t...
CVE-2006-1482Cross-site scripting (XSS) vulnerability in index.php in ConfTool 1.1 allows remote attackers to inject arbitrary web sc...
CVE-2006-1481SQL injection vulnerability in search.php in PHP Ticket 0.71 allows remote authenticated users to execute arbitrary SQL ...
CVE-2006-1480Directory traversal vulnerability in start.php in WebAlbum 2.02 allows remote attackers to include arbitrary files and e...
CVE-2006-1431Cross-site scripting (XSS) vulnerability in local.cfm in fusionZONE couponZONE 4.2 allows remote attackers to inject arb...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now