2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-1279 | — | — | 1.3% | Mar 19, 2006 | CGI::Session 4.03-1 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by (1) ... |
| CVE-2006-1273 | — | — | 1.6% | Mar 19, 2006 | Mozilla Firefox 1.0.7 and 1.5.0.1 allows remote attackers to cause a denial of service (crash) via an HTML tag with a la... |
| CVE-2006-1274 | — | — | 0.4% | Mar 19, 2006 | Classic Planer in AntiVir PersonalEdition Classic 7 does not drop privileges before executing external programs, which a... |
| CVE-2006-1266 | — | — | 1.2% | Mar 19, 2006 | Cross-site scripting (XSS) vulnerability in Service_Requests.asp in VPMi Enterprise 3.3 allows remote attackers to injec... |
| CVE-2006-1267 | — | — | 1.1% | Mar 19, 2006 | Invision Power Board 2.1.4 allows remote attackers to hijack sessions and possibly gain administrative privileges by obt... |
| CVE-2006-1268 | — | — | 3.2% | Mar 19, 2006 | The Internet Key Exchange implementation in Funkwerk X2300 7.2.1 allows remote attackers to cause a denial of service an... |
| CVE-2006-1269 | — | — | 1.0% | Mar 19, 2006 | Buffer overflow in the parse function in parse.c in zoo 2.10 might allow local users to execute arbitrary code via long ... |
| CVE-2006-1272 | — | — | 2.1% | Mar 19, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in member.php in MyBulletin Board (MyBB) 1.0.3 allow remote attacker... |
| CVE-2006-1270 | — | — | 1.0% | Mar 19, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in zones.php in Inprotect 0.21 allow remote attackers to inject arbi... |
| CVE-2006-1271 | — | — | 1.3% | Mar 19, 2006 | SQL injection vulnerability in index.php in OxyNews allows remote attackers to execute arbitrary SQL commands via the ox... |
| CVE-2006-1261 | — | — | 1.4% | Mar 19, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in ASPPortal 3.00 allow remote attackers to inject arbitrary web scr... |
| CVE-2006-1260 | — | — | 12.2% | Mar 19, 2006 | Horde Application Framework 3.0.9 allows remote attackers to read arbitrary files via a null character in the url parame... |
| CVE-2006-1262 | — | — | 1.5% | Mar 19, 2006 | Multiple SQL injection vulnerabilities in ASPPortal 3.00 have unknown impact and attack vectors. |
| CVE-2006-1263 | — | — | 1.6% | Mar 19, 2006 | Multiple "unannounced" cross-site scripting (XSS) vulnerabilities in WordPress before 2.0.2 allow remote attackers to in... |
| CVE-2006-1264 | — | — | 1.2% | Mar 19, 2006 | Cross-site scripting (XSS) vulnerability in xhawk.net discussion 2.0 beta2 allows remote attackers to inject arbitrary w... |
| CVE-2006-1265 | — | — | 1.3% | Mar 19, 2006 | SQL injection vulnerability in discussion.class.php in xhawk.net discussion 2.0 beta2 allows remote attackers to execute... |
| CVE-2006-1255 | — | — | 68.1% | Mar 19, 2006 | Stack-based buffer overflow in the IMAP service in Mercur Messaging 5.0 SP3 and earlier allows remote attackers to cause... |
| CVE-2006-1258 | — | — | 2.5% | Mar 19, 2006 | Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.0.1 allows remote attackers to inject arbitrary web script or... |
| CVE-2006-1259 | — | — | 2.1% | Mar 19, 2006 | Multiple SQL injection vulnerabilities in Maian Support 1.0 allow remote attackers to execute arbitrary SQL commands via... |
| CVE-2006-1249 | — | — | 6.0% | Mar 19, 2006 | Integer overflow in Apple QuickTime Player 7.0.3 and 7.0.4 and iTunes 6.0.1 and 6.0.2 allows remote attackers to execute... |
| CVE-2006-1253 | — | — | 1.5% | Mar 19, 2006 | Unspecified vulnerability in glFTPd before 2.01 RC5 allows remote attackers to bypass IP checks via a crafted DNS hostna... |
| CVE-2006-1254 | — | — | 2.7% | Mar 19, 2006 | Unspecified vulnerability in BorderWare MXtreme 5.0 and 6.0 allows remote attackers to have an unknown impact via unknow... |
| CVE-2006-1257 | — | — | 30.1% | Mar 19, 2006 | The sample files in the authfiles directory in Microsoft Commerce Server 2002 before SP2 allow remote attackers to bypas... |
| CVE-2006-1250 | — | — | 1.7% | Mar 19, 2006 | Unspecified vulnerability in the Webmail module in Winmail before 4.3 has unknown impact and unknown remote attack vecto... |
| CVE-2006-1251 | — | — | 1.5% | Mar 19, 2006 | Argument injection vulnerability in greylistclean.cron in sa-exim 4.2 allows remote attackers to delete arbitrary files ... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now