2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-0576Untrusted search path vulnerability in opcontrol in OProfile 0.9.1 and earlier allows local users to execute arbitrary c...
CVE-2006-0577Lexmark X1185 printer allows local users to gain SYSTEM privileges by navigating to the "Appearance" dialog and selectin...
CVE-2006-0575convert-fcrontab in Fcron 2.9.5 and 3.0.0 allows remote attackers to create or overwrite arbitrary files via ".." sequen...
CVE-2006-0568Cross-site scripting (XSS) vulnerability in throw.main in Outblaze allows remote attackers to inject arbitrary web scrip...
CVE-2006-0454Linux kernel before 2.6.15.3 down to 2.6.12, while constructing an ICMP response in icmp_send, does not properly handle ...
CVE-2006-0567Directory traversal vulnerability in Files Xaraya module before 0.5.1, when the Archive Directory field on the Modify Co...
CVE-2006-0574Cross-site scripting (XSS) vulnerability in mime/handle.html in cPanel 10 allows remote attackers to inject arbitrary we...
CVE-2006-0573Multiple cross-site scripting (XSS) vulnerabilies in cPanel 10 and earlier allow remote attackers to inject arbitrary we...
CVE-2006-0572phpstatus 1.0 does not require passwords when using cookies to identify a user, which allows remote attackers to bypass ...
CVE-2006-0571Multiple cross-site scripting (XSS) vulnerabilities in phpstatus 1.0 allow remote attackers to inject arbitrary web scri...
CVE-2006-0570Multiple SQL injection vulnerabilities in phpstatus 1.0, when gpc_magic_quotes is disabled, allow remote attackers to ex...
CVE-2006-0569Cross-site scripting (XSS) vulnerability in user_class.php in Papoo 2.1.4 and earlier allows remote attackers to inject ...
CVE-2006-0563SQL injection vulnerability in exec.php in PluggedOut Blog 1.9.9c allows remote attackers to execute arbitrary SQL comma...
CVE-2006-0513Directory traversal vulnerability in pkmslogout in Tivoli Web Server Plug-in 5.1.0.10 in Tivoli Access Manager (TAM) 5.1...
CVE-2006-0566The LDAP component in CommuniGate Pro Core Server 5.0.7 allows remote attackers to cause a denial of service (applicatio...
CVE-2006-0562Cross-site scripting (XSS) vulnerability in problem.php in PluggedOut Blog 1.9.9c allows remote attackers to inject arbi...
CVE-2006-0564Stack-based buffer overflow in Microsoft HTML Help Workshop 4.74.8702.0, and possibly earlier versions, and as included ...
CVE-2006-0565PHP remote file include vulnerability in inc/backend_settings.php in Loudblog 0.4 and earlier allows remote attackers to...
CVE-2006-0438Cross-site request forgery (CSRF) vulnerability in phpBB 2.0.19, when Link to off-site Avatar or bbcode (IMG) are enable...
CVE-2006-0437Cross-site scripting (XSS) vulnerability in admin_smilies.php in phpBB 2.0.19 allows remote attackers to inject arbitrar...
CVE-2006-0552Unspecified vulnerability in the Net Listener component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, and 9....
CVE-2006-0541Multiple cross-site scripting (XSS) vulnerabilities in Tachyon Vanilla Guestbook 1.0 beta allow remote attackers to inje...
CVE-2006-0550Buffer overflow in an unspecified Oracle Client utility might allow remote attackers to execute arbitrary code or cause ...
CVE-2006-0549SQL injection vulnerability in the SYS.DBMS_METADATA_UTIL package in Oracle Database 10g, and possibly earlier versions,...
CVE-2006-0548SQL injection vulnerability in the Oracle Text component of Oracle Database 10g, and possibly earlier versions, might al...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now