2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-0381A logic error in the IP fragment cache functionality in pf in FreeBSD 5.3, 5.4, and 6.0, and OpenBSD, when a 'scrub frag...
CVE-2006-0380A logic error in FreeBSD kernel 5.4-STABLE and 6.0 causes the kernel to calculate an incorrect buffer length, which caus...
CVE-2006-0379FreeBSD kernel 5.4-STABLE and 6.0 does not completely initialize a buffer before making it available to userland, which ...
CVE-2006-0418Eval injection vulnerability in 123 Flash Chat Server 5.0 and 5.1 allows attackers to execute arbitrary code via a craft...
CVE-2006-0414Tor before 0.1.1.20 allows remote attackers to identify hidden services via a malicious Tor server that attempts a large...
CVE-2006-0415Cross-site scripting (XSS) vulnerability in index.php in SleeperChat 0.3f and earlier allows remote attackers to inject ...
CVE-2006-0225scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or s...
CVE-2006-0411claro_init_local.inc.php in Claroline 1.7.2 uses guessable session cookies (MD5 hash of connection time), which allows r...
CVE-2006-0413Multiple SQL injection vulnerabilities in index.php in NewsPHP allow remote attackers to execute arbitrary SQL commands ...
CVE-2006-0416SleeperChat 0.3f and earlier allows remote attackers to bypass authentication and create new entries via the txt paramet...
CVE-2006-0417SQL injection vulnerability in login.php in miniBloggie 1.0 and earlier, when gpc_magic_quotes is disabled, allows remot...
CVE-2006-0412SQL injection vulnerability in CyberShop allows remote attackers to execute arbitrary SQL commands and bypass authentica...
CVE-2006-0224Buffer overflow in Library of Assorted Spiffy Things (LibAST) 0.6.1 and earlier, as used in Eterm and possibly other sof...
CVE-2006-0406search.php in MyBB 1.0.2 allows remote attackers to obtain sensitive information via a certain search request that revea...
CVE-2006-0405The TIFFFetchShortPair function in tif_dirread.c in libtiff 3.8.0 allows remote attackers to cause a denial of service (...
CVE-2006-0404Note-A-Day Weblog 2.2 stores sensitive data under the web document root with insufficient access control, which allows r...
CVE-2006-0403Multiple SQL injection vulnerabilities in e-moBLOG 1.3 allow remote attackers to execute arbitrary SQL commands via the ...
CVE-2006-0402SQL injection vulnerability in Zoph before 0.5pre1 allows remote attackers to execute arbitrary SQL commands.
CVE-2006-0410SQL injection vulnerability in ADOdb before 4.71, when using PostgreSQL, allows remote attackers to execute arbitrary SQ...
CVE-2006-0409Cross-site scripting (XSS) vulnerability in index.php in Pixelpost Photoblog 1.4.3 allows remote attackers to inject arb...
CVE-2006-0408rsh utility in Sun Grid Engine (SGE) before 6.0u7_1 allows local users to gain privileges and execute arbitrary code via...
CVE-2006-0407Cross-site scripting (XSS) vulnerability in post.php in AZ Bulletin Board (AZbb) 1.1.00 and earlier allows remote attack...
CVE-2006-0321fetchmail 6.3.0 and other versions before 6.3.2 allows remote attackers to cause a denial of service (crash) via crafted...
CVE-2006-0037ip_nat_pptp in the PPTP NAT helper (netfilter/ip_nat_helper_pptp.c) in Linux kernel 2.6.14, and other versions, allows l...
CVE-2006-0036ip_nat_pptp in the PPTP NAT helper (netfilter/ip_nat_helper_pptp.c) in Linux kernel 2.6.14, and other versions, allows r...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now