2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-0957Direct static code injection vulnerability in func.inc.php in ZoneO-Soft freeForum before 1.2.1 allows remote attackers ...
CVE-2006-0958Cross-site scripting (XSS) vulnerability in func.inc.php in ZoneO-Soft freeForum before 1.2.1 allows remote attackers to...
CVE-2006-0959SQL injection vulnerability in misc.php in MyBulletinBoard (MyBB) 1.03, when register_globals is enabled, allows remote ...
CVE-2006-0960uConfig agent in Compex NetPassage WPE54G router allows remote attackers to cause a denial of service (unresposiveness) ...
CVE-2006-0961SQL injection vulnerability in yazdir.asp in Cilem Hiber 1.1 allows remote attackers to execute arbitrary SQL commands v...
CVE-2006-0967NCP Network Communication Secure Client 8.11 Build 146, and possibly other versions, allows local users to cause a denia...
CVE-2006-0962SQL injection vulnerability in vuBB 0.2 allows remote attackers to execute arbitrary SQL commands via the pass parameter...
CVE-2006-0963Multiple buffer overflows in STLport 5.0.2 might allow local users to execute arbitrary code via (1) long locale environ...
CVE-2006-0964Client Firewall in NCP Network Communication Secure Client 8.11 Build 146, and possibly other versions, allows local use...
CVE-2006-0383IPSec when used with VPN networks in Mac OS X 10.4 through 10.4.5 allows remote attackers to cause a denial of service (...
CVE-2006-0384automount in Mac OS X 10.4.5 and earlier allows remote file servers to cause a denial of service (unresponsiveness) or e...
CVE-2006-0394Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-0848. Reason: This candidate is a duplicate of...
CVE-2006-0938Cross-site scripting (XSS) vulnerability in eZ publish 3.7.3 and earlier allows remote attackers to inject arbitrary web...
CVE-2006-0939SQL injection vulnerability in DCI-Taskeen 1.03 allows remote attackers to execute arbitrary SQL commands via the (1) id...
CVE-2006-0947Thomson SpeedTouch modem running firmware 5.3.2.6.0 allows remote attackers to create users that cannot be deleted via s...
CVE-2006-0946Cross-site scripting (XSS) vulnerability in Thomson SpeedTouch modems running firmware 5.3.2.6.0 allows remote attackers...
CVE-2006-0945PHP remote file include vulnerability in admin/index.php in Archangel Weblog 0.90.02 allows remote authenticated adminis...
CVE-2006-0944Archangel Weblog 0.90.02 allows remote attackers to bypass authentication by setting the ba_admin cookie to 1.
CVE-2006-0943SQL injection vulnerability in the sondages module in index.php in PwsPHP 1.2.3 allows remote attackers to execute arbit...
CVE-2006-0940Multiple direct static code injection vulnerabilities in savesettings.php in ShoutLIVE 1.1.0 allow remote attackers to e...
CVE-2006-0942SQL injection vulnerability in profil.php in PwsPHP 1.2.3, and possibly earlier versions, allows remote attackers to exe...
CVE-2006-0941Multiple cross-site scripting (XSS) vulnerabilities in post.php in ShoutLIVE 1.1.0 allow remote attackers to inject arbi...
CVE-2006-0914Bugzilla 2.16.10, 2.17 through 2.18.4, and 2.20 does not properly handle certain characters in the mostfreqthreshold par...
CVE-2006-0913SQL injection vulnerability in whineatnews.pl in Bugzilla 2.17 through 2.18.4 and 2.20 allows remote authenticated users...
CVE-2006-0912Oreka before 0.5 allows remote attackers to cause a denial of service (application crash) via a "certain RTP sequence."

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now