2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-0381 | — | — | 6.4% | Jan 25, 2006 | A logic error in the IP fragment cache functionality in pf in FreeBSD 5.3, 5.4, and 6.0, and OpenBSD, when a 'scrub frag... |
| CVE-2006-0380 | — | — | 0.3% | Jan 25, 2006 | A logic error in FreeBSD kernel 5.4-STABLE and 6.0 causes the kernel to calculate an incorrect buffer length, which caus... |
| CVE-2006-0379 | — | — | 0.4% | Jan 25, 2006 | FreeBSD kernel 5.4-STABLE and 6.0 does not completely initialize a buffer before making it available to userland, which ... |
| CVE-2006-0418 | — | — | 3.6% | Jan 25, 2006 | Eval injection vulnerability in 123 Flash Chat Server 5.0 and 5.1 allows attackers to execute arbitrary code via a craft... |
| CVE-2006-0414 | — | — | 2.9% | Jan 25, 2006 | Tor before 0.1.1.20 allows remote attackers to identify hidden services via a malicious Tor server that attempts a large... |
| CVE-2006-0415 | — | — | 1.7% | Jan 25, 2006 | Cross-site scripting (XSS) vulnerability in index.php in SleeperChat 0.3f and earlier allows remote attackers to inject ... |
| CVE-2006-0225 | — | — | 0.5% | Jan 25, 2006 | scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or s... |
| CVE-2006-0411 | — | — | 2.5% | Jan 25, 2006 | claro_init_local.inc.php in Claroline 1.7.2 uses guessable session cookies (MD5 hash of connection time), which allows r... |
| CVE-2006-0413 | — | — | 1.2% | Jan 25, 2006 | Multiple SQL injection vulnerabilities in index.php in NewsPHP allow remote attackers to execute arbitrary SQL commands ... |
| CVE-2006-0416 | — | — | 1.5% | Jan 25, 2006 | SleeperChat 0.3f and earlier allows remote attackers to bypass authentication and create new entries via the txt paramet... |
| CVE-2006-0417 | — | — | 1.9% | Jan 25, 2006 | SQL injection vulnerability in login.php in miniBloggie 1.0 and earlier, when gpc_magic_quotes is disabled, allows remot... |
| CVE-2006-0412 | — | — | 1.4% | Jan 25, 2006 | SQL injection vulnerability in CyberShop allows remote attackers to execute arbitrary SQL commands and bypass authentica... |
| CVE-2006-0224 | — | — | 0.7% | Jan 25, 2006 | Buffer overflow in Library of Assorted Spiffy Things (LibAST) 0.6.1 and earlier, as used in Eterm and possibly other sof... |
| CVE-2006-0406 | — | — | 1.5% | Jan 25, 2006 | search.php in MyBB 1.0.2 allows remote attackers to obtain sensitive information via a certain search request that revea... |
| CVE-2006-0405 | — | — | 2.8% | Jan 25, 2006 | The TIFFFetchShortPair function in tif_dirread.c in libtiff 3.8.0 allows remote attackers to cause a denial of service (... |
| CVE-2006-0404 | — | — | 1.8% | Jan 25, 2006 | Note-A-Day Weblog 2.2 stores sensitive data under the web document root with insufficient access control, which allows r... |
| CVE-2006-0403 | — | — | 2.0% | Jan 25, 2006 | Multiple SQL injection vulnerabilities in e-moBLOG 1.3 allow remote attackers to execute arbitrary SQL commands via the ... |
| CVE-2006-0402 | — | — | 1.4% | Jan 25, 2006 | SQL injection vulnerability in Zoph before 0.5pre1 allows remote attackers to execute arbitrary SQL commands. |
| CVE-2006-0410 | — | — | 2.8% | Jan 25, 2006 | SQL injection vulnerability in ADOdb before 4.71, when using PostgreSQL, allows remote attackers to execute arbitrary SQ... |
| CVE-2006-0409 | — | — | 1.9% | Jan 25, 2006 | Cross-site scripting (XSS) vulnerability in index.php in Pixelpost Photoblog 1.4.3 allows remote attackers to inject arb... |
| CVE-2006-0408 | — | — | 0.4% | Jan 25, 2006 | rsh utility in Sun Grid Engine (SGE) before 6.0u7_1 allows local users to gain privileges and execute arbitrary code via... |
| CVE-2006-0407 | — | — | 2.6% | Jan 25, 2006 | Cross-site scripting (XSS) vulnerability in post.php in AZ Bulletin Board (AZbb) 1.1.00 and earlier allows remote attack... |
| CVE-2006-0321 | — | — | 3.4% | Jan 24, 2006 | fetchmail 6.3.0 and other versions before 6.3.2 allows remote attackers to cause a denial of service (crash) via crafted... |
| CVE-2006-0037 | — | — | 0.4% | Jan 23, 2006 | ip_nat_pptp in the PPTP NAT helper (netfilter/ip_nat_helper_pptp.c) in Linux kernel 2.6.14, and other versions, allows l... |
| CVE-2006-0036 | — | — | 3.2% | Jan 23, 2006 | ip_nat_pptp in the PPTP NAT helper (netfilter/ip_nat_helper_pptp.c) in Linux kernel 2.6.14, and other versions, allows r... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now