2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-1111Aztek Forum 4.0 allows remote attackers to obtain sensitive information via a "*/*" in the msg parameter to index.php, w...
CVE-2006-1112Aztek Forum 4.0 allows remote attackers to obtain sensitive information via a long login value in a register form, which...
CVE-2006-1113SQL injection vulnerability in podcast.php in Loudblog before 0.42 allows remote attackers to execute arbitrary SQL comm...
CVE-2006-1089Cross-site scripting (XSS) vulnerability in header.php in PunBB 1.2.10 allows remote attackers to inject arbitrary web s...
CVE-2006-1090register.php in PunBB 1.2.10 allows remote attackers to cause an unspecified denial of service via a flood of new user r...
CVE-2006-1114Multiple directory traversal vulnerabilities in Loudblog before 0.42 allow remote attackers to read or include arbitrary...
CVE-2006-1115nCipher HSM before 2.22.6, when generating a Diffie-Hellman public/private key pair without any specified DiscreteLogGro...
CVE-2006-1077Multiple cross-site scripting (XSS) vulnerabilities in the commentary in Evo-Dev evoBlog allow remote attackers to injec...
CVE-2006-1079htpasswd, as used in Acme thttpd 2.25b and possibly other products such as Apache, might allow local users to gain privi...
CVE-2006-1081SQL injection vulnerability in forgotten_password.php in Jonathan Beckett PluggedOut Nexus 0.1 allows remote attackers t...
CVE-2006-0746Certain patches for kpdf do not include all relevant patches from xpdf that were associated with CVE-2005-3627, which al...
CVE-2006-1087Direct static code injection vulnerability in the modify_config action in admin.php for PHP-Stats 0.1.9.1 and earlier al...
CVE-2006-1088PHP-Stats 0.1.9.1 and earlier allows remote attackers to obtain potentially sensitive information via a direct request t...
CVE-2006-1083Multiple directory traversal vulnerabilities in PHP-Stats 0.1.9.1 and earlier allow remote attackers to read and possibl...
CVE-2006-1082Multiple cross-site scripting (XSS) vulnerabilities in phpArcadeScript 2.0 and earlier allow remote attackers to inject ...
CVE-2006-1080Cross-site scripting (XSS) vulnerability in login.php in Game-Panel 2.6.1 and earlier allows remote attackers to inject ...
CVE-2006-1084Multiple SQL injection vulnerabilities in PHP-Stats 0.1.9.1 and earlier allow remote attackers to execute arbitrary SQL ...
CVE-2006-1085admin.php in PHP-Stats 0.1.9.1 and earlier allows remote attackers to bypass authentication, gain administrator privileg...
CVE-2006-1074Jason Boettcher Liero Xtreme 0.62b and earlier allow remote attackers to cause a denial of service (application crash or...
CVE-2006-1075Format string vulnerability in the visualization function in Jason Boettcher Liero Xtreme 0.62b and earlier allows remot...
CVE-2006-1076SQL injection vulnerability in index.php, possibly during a showtopic operation, in Invision Power Board (IPB) 2.1.5 all...
CVE-2006-1086Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-1083. Reason: This candidate is a duplicate of...
CVE-2006-1073Directory traversal vulnerability in index.php in Daverave Simplog 1.0.2 and earlier allows remote attackers to include ...
CVE-2006-1072Cross-site scripting (XSS) vulnerability in Daverave Simplog 1.0.2 and earlier allows remote attackers to inject arbitra...
CVE-2006-1071Cross-site scripting (XSS) vulnerability in index.php in DVguestbook 1.2.2 allows remote attackers to inject arbitrary w...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now