2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-0350Cross-site scripting (XSS) vulnerability in eggblog 2.0 allow remote attackers to inject arbitrary web script or HTML vi...
CVE-2006-0352The default configuration of Fluffington FLog 1.01 installs users.0.dat under the web document root with insufficient ac...
CVE-2006-0351Unspecified "critical denial-of-service vulnerability" in MyDNS before 1.1.0 has unknown impact and attack vectors.
CVE-2006-0349SQL injection vulnerability in eggblog 2.0 allows remote attackers to execute arbitrary SQL commands via the id paramete...
CVE-2006-0348Format string vulnerability in the write_logfile function in ELOG before 2.6.1 allows remote attackers to cause a denial...
CVE-2006-0347Directory traversal vulnerability in ELOG before 2.6.1 allows remote attackers to access arbitrary files outside of the ...
CVE-2006-0346Cross-site scripting (XSS) vulnerability in SaralBlog 1.0 allows remote attackers to inject arbitrary web script or HTML...
CVE-2006-0345Multiple SQL injection vulnerabilities in SaralBlog 1.0 allow remote attackers to execute arbitrary SQL commands via the...
CVE-2006-0339Buffer overflow in BitComet Client 0.60 allows remote attackers to execute arbitrary code, when the publisher's name lin...
CVE-2006-0338Multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 ...
CVE-2006-0337Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Wi...
CVE-2006-0336Kerio WinRoute Firewall before 6.1.4 Patch 2 allows attackers to cause a denial of service (CPU consumption and hang) vi...
CVE-2006-0335Multiple unspecified vulnerabilities in Kerio WinRoute Firewall before 6.1.4 Patch 1 allow remote attackers to cause a d...
CVE-2006-0334Cross-site scripting (XSS) vulnerability in search.php in My Amazon Store Manager 1.0 allows remote attackers to inject ...
CVE-2006-0333Cross-site scripting (XSS) vulnerability in ar-blog 5.2 allows remote attackers to inject arbitrary web script or HTML v...
CVE-2006-0332Pantomime in Ecartis 1.0.0 snapshot 20050909 stores e-mail attachments in a publicly accessible directory, which may all...
CVE-2006-0331Buffer overflow in Change passwd 3.1 (chpasswd) SquirrelMail plugin allows local users to execute arbitrary code via lon...
CVE-2006-0343Unspecified vulnerability in the Port Discovery Standard and Advanced features in Hitachi JP1/NetInsight II allows attac...
CVE-2006-0328Format string vulnerability in Tftpd32 2.81 allows remote attackers to cause a denial of service via format string speci...
CVE-2006-0327TYPO3 3.7.1 allows remote attackers to obtain sensitive information via a direct request to (1) thumbs.php, (2) showpic....
CVE-2006-0344Directory traversal vulnerability in Intervations FileCOPA FTP Server 1.01 allows remote attackers to read and write arb...
CVE-2006-0342RockLiffe MailSite HTTP Mail management agent (httpma) 7.0.3.1 allows remote attackers to cause a denial of service (CPU...
CVE-2006-0340Unspecified vulnerability in Stack Group Bidding Protocol (SGBP) support in Cisco IOS 12.0 through 12.4 running on vario...
CVE-2006-0330Cross-site scripting (XSS) vulnerability in Gallery before 1.5.2 allows remote attackers to inject arbitrary web script ...
CVE-2006-0329SQL injection vulnerability in HITSENSER Data Mart Server BS, BS-S, BS-M, BS-L, and EX allows remote attackers to execut...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now