2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-1029The cross-site scripting (XSS) countermeasures in class.inputfilter.php in Joomla! 1.0.7 allow remote attackers to cause...
CVE-2006-1030Unspecified vulnerability in mod_templatechooser in Joomla! 1.0.7 allows remote attackers to obtain sensitive informatio...
CVE-2006-0815NetworkActiv Web Server 3.5.15 allows remote attackers to read script source code via a crafted URL with a "/" (forward ...
CVE-2006-0458The DCC ACCEPT command handler in irssi before 0.8.9+0.8.10rc5-0ubuntu4.1 in Ubuntu Linux, and possibly other distributi...
CVE-2006-0949RaidenHTTPD 1.1.47 allows remote attackers to obtain source code of script files, including PHP, via crafted requests in...
CVE-2006-1010Buffer overflow in socket/request.c in CrossFire before 1.9.0, when oldsocketmode is enabled, allows remote attackers to...
CVE-2006-0814response.c in Lighttpd 1.4.10 and possibly previous versions, when run on Windows, allows remote attackers to read arbit...
CVE-2006-1011LetterMerger 1.2 stores user information in Access database files with insecure permissions, which allows local users to...
CVE-2006-1012SQL injection vulnerability in WordPress 1.5.2, and possibly other versions before 2.0, allows remote attackers to execu...
CVE-2006-1006Multiple SQL injection vulnerabilities in sendcard.php in sendcard before 3.3.0 allow remote attackers to execute arbitr...
CVE-2006-0390Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-4504. Reason: This candidate is a duplicate of...
CVE-2006-0387Stack-based buffer overflow in Safari in Mac OS X 10.4.5 and earlier, and 10.3.9 and earlier, allows remote attackers to...
CVE-2006-1005agencyprofile.asp in Parodia 6.2 and earlier might allow remote attackers to obtain sensitive information by triggering ...
CVE-2006-1003The backup configuration option in NETGEAR WGT624 Wireless Firewall Router stores sensitive information in cleartext, wh...
CVE-2006-1002NETGEAR WGT624 Wireless DSL router has a default account of super_username "Gearguy" and super_passwd "Geardog", which a...
CVE-2006-1001SQL injection vulnerability in the board module in LanSuite LanParty Intranet System 2.0.6 and 2.1.0 beta allows remote ...
CVE-2006-1000Multiple SQL injection vulnerabilities in Pentacle In-Out Board 3.0 and earlier allow remote attackers to execute arbitr...
CVE-2006-1009M4 Project enigma-suite before 0.73.3 (Windows) has a default password of "nominal" for the "enigma-client" account, whi...
CVE-2006-1008Multiple cross-site scripting (XSS) vulnerabilities in N8cms 1.1 and 1.2 allow remote attackers to inject arbitrary web ...
CVE-2006-1007Multiple SQL injection vulnerabilities in N8cms 1.1 and 1.2 allow remote attackers to execute arbitrary SQL commands via...
CVE-2006-1004Cross-site scripting (XSS) vulnerability in agencyprofile.asp in Parodia 6.2 and earlier allows remote attackers to inje...
CVE-2006-0386FileVault in Mac OS X 10.4.5 and earlier does not properly mount user directories when creating a FileVault image, which...
CVE-2006-0391Directory traversal vulnerability in the BOM framework in Mac OS X 10.x before 10.3.9 and 10.4 before 10.4.5 allows user...
CVE-2006-0388Safari in Mac OS X 10.3 before 10.3.9 and 10.4 before 10.4.5 allows remote attackers to redirect users to local files an...
CVE-2006-0389Cross-site scripting (XSS) vulnerability in Syndication (Safari RSS) in Mac OS X 10.4 through 10.4.5 allows remote attac...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now