2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-0296 | — | — | 4.0% | Feb 2, 2006 | The XULDocument.persist function in Mozilla, Firefox before 1.5.0.1, and SeaMonkey before 1.0 does not validate the attr... |
| CVE-2006-0529 | — | — | 3.2% | Feb 2, 2006 | Computer Associates (CA) Message Queuing (CAM / CAFT) before 1.07 Build 220_16 and 1.11 Build 29_20, as used in multiple... |
| CVE-2006-0526 | — | — | 0.4% | Feb 2, 2006 | The default configuration of the America Online (AOL) client software allows all users to modify a certain registry valu... |
| CVE-2006-0520 | — | — | 1.1% | Feb 2, 2006 | SQL injection vulnerability index.php in Dragoran Portal module 1.3 for Invision Power Board (IPB) allows remote attacke... |
| CVE-2006-0519 | — | — | 2.1% | Feb 2, 2006 | SPIP 1.8.2-e and earlier and 1.9 Alpha 2 (5539) and earlier allows remote attackers to obtain sensitive information via ... |
| CVE-2006-0516 | — | — | 0.4% | Feb 2, 2006 | Unspecified vulnerability in the kernel processing in Solaris 10 64 bit platform, when running in 64-bit mode, allows lo... |
| CVE-2006-0528 | — | — | 9.2% | Feb 2, 2006 | The cairo library (libcairo), as used in GNOME Evolution and possibly other products, allows remote attackers to cause a... |
| CVE-2006-0517 | — | — | 3.2% | Feb 2, 2006 | Multiple SQL injection vulnerabilities in formulaires/inc-formulaire_forum.php3 in SPIP 1.8.2-e and earlier and 1.9 Alph... |
| CVE-2006-0521 | — | — | 1.3% | Feb 2, 2006 | Cross-site scripting (XSS) vulnerability in results.php in BrowserCRM allows remote attackers to inject arbitrary web sc... |
| CVE-2006-0522 | — | — | 2.8% | Feb 2, 2006 | SQL injection vulnerability in the Authentication Servlet in Symantec Sygate Management Server (SMS) version 4.1 build 1... |
| CVE-2006-0523 | — | — | 1.2% | Feb 2, 2006 | SQL injection vulnerability in global.php in MyBB before 1.03 allows remote attackers to execute arbitrary SQL commands ... |
| CVE-2006-0524 | — | — | 3.9% | Feb 2, 2006 | Cross-site scripting (XSS) vulnerability in ashnews.php in Derek Ashauer ashNews 0.83 allows remote attackers to inject ... |
| CVE-2006-0525 | — | — | 1.3% | Feb 2, 2006 | Multiple Adobe products, including (1) Photoshop CS2, (2) Illustrator CS2, and (3) Adobe Help Center, install a large nu... |
| CVE-2006-0512 | — | — | 0.3% | Feb 2, 2006 | PADL MigrationTools 46 creates temporary files insecurely, which allows local users to overwrite arbitrary files via a s... |
| CVE-2006-0518 | — | — | 3.8% | Feb 2, 2006 | Cross-site scripting (XSS) vulnerability in index.php3 in SPIP 1.8.2-e and earlier and 1.9 Alpha 2 (5539) and earlier al... |
| CVE-2006-0433 | — | — | 2.8% | Feb 2, 2006 | Selective Acknowledgement (SACK) in FreeBSD 5.3 and 5.4 does not properly handle an incoming selective acknowledgement w... |
| CVE-2006-0527 | — | — | 8.0% | Feb 2, 2006 | BIND 4 (BIND4) and BIND 8 (BIND8), if used as a target forwarder, allows remote attackers to gain privileged access via ... |
| CVE-2006-0506 | — | — | 1.3% | Feb 1, 2006 | Cross-site scripting (XSS) vulnerability in index.php in Nuked-klaN 1.7 allows remote attackers to inject arbitrary web ... |
| CVE-2006-0507 | — | — | 1.3% | Feb 1, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in Easy CMS allow remote attackers to inject arbitrary web script or... |
| CVE-2006-0508 | — | — | 1.4% | Feb 1, 2006 | Easy CMS stores the images directory under the web document root with insufficient access control and browsing enabled, ... |
| CVE-2006-0509 | — | — | 1.9% | Feb 1, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in clients.php in Cerberus Helpdesk, possibly 2.7, allow remote atta... |
| CVE-2006-0505 | — | — | 1.2% | Feb 1, 2006 | zbattle.net Zbattle client 1.09 SR-1 beta allows remote attackers to cause an unspecified denial of service by rapidly c... |
| CVE-2006-0510 | — | — | 1.2% | Feb 1, 2006 | SQL injection vulnerability in userlogin.jsp in Daffodil CRM 1.5 allows remote attackers to execute arbitrary SQL comman... |
| CVE-2006-0511 | — | — | 0.4% | Feb 1, 2006 | Blackboard Academic Suite 6.0 and earlier does not properly clear session information when de-authenticating a user who ... |
| CVE-2006-0503 | — | — | 2.3% | Feb 1, 2006 | IMAP service in MailEnable Professional Edition before 1.72 allows remote attackers to cause a denial of service (servic... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now