2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-0128 | — | — | 2.8% | Jan 9, 2006 | Buffer overflow in the IMAP service of Rockliffe MailSite before 6.1.22.1 allows remote attackers to have an unknown imp... |
| CVE-2006-0127 | — | — | 1.6% | Jan 9, 2006 | Directory traversal vulnerability in the IMAP service of Rockliffe MailSite before 6.1.22.1 allows remote authenticated ... |
| CVE-2006-0112 | — | — | 1.3% | Jan 7, 2006 | Cross-site scripting (XSS) vulnerability in index.php in Enhanced Simple PHP Gallery 1.7 allows remote attackers to inje... |
| CVE-2006-0113 | — | — | 1.5% | Jan 7, 2006 | Enhanced Simple PHP Gallery 1.7 allows remote attackers to obtain the full path of the application via a direct request ... |
| CVE-2006-0109 | — | — | 1.7% | Jan 7, 2006 | Cross-site scripting vulnerability in category.php in Modular Merchant Shopping Cart allows remote attackers to inject a... |
| CVE-2006-0108 | — | — | 1.3% | Jan 7, 2006 | SQL injection vulnerability in mcl_login.asp in Timecan CMS allows remote attackers to execute arbitrary SQL commands vi... |
| CVE-2006-0111 | — | — | 1.4% | Jan 7, 2006 | Cross-site scripting vulnerability in index.php in Boxcar Media Shopping Cart allows remote attackers to inject arbitrar... |
| CVE-2006-0110 | — | — | 2.0% | Jan 7, 2006 | Cross-site scripting (XSS) vulnerability in escribir.php in Foro Domus 2.10 allows remote attackers to inject arbitrary ... |
| CVE-2006-0107 | — | — | 1.3% | Jan 7, 2006 | SQL injection vulnerability in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the viewID para... |
| CVE-2006-0106 | — | — | 4.2% | Jan 6, 2006 | gdi/driver.c and gdi/printdrv.c in Wine 20050930, and other versions, implement the SETABORTPROC GDI Escape function cal... |
| CVE-2006-0096 | — | — | 0.4% | Jan 6, 2006 | wan/sdla.c in Linux kernel 2.6.x before 2.6.11 and 2.4.x before 2.4.29 does not require the CAP_SYS_RAWIO privilege for ... |
| CVE-2006-0098 | — | — | 0.3% | Jan 6, 2006 | The dupfdopen function in sys/kern/kern_descrip.c in OpenBSD 3.7 and 3.8 allows local users to re-open arbitrary files b... |
| CVE-2006-0100 | — | — | 0.4% | Jan 6, 2006 | Buffer overflow in NicoFTP 3.0.1.19 and earlier might allow local users to execute arbitrary code via a long string in t... |
| CVE-2006-0101 | — | — | 1.2% | Jan 6, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in sBLOG 0.7.1 Beta 20051202 and earlier allow remote attackers to i... |
| CVE-2006-0102 | — | — | 1.4% | Jan 6, 2006 | Cross-site scripting (XSS) vulnerability in TinyPHPForum (TPF) 3.6 and earlier allows remote attackers to inject arbitra... |
| CVE-2006-0103 | — | — | 4.1% | Jan 6, 2006 | TinyPHPForum 3.6 and earlier stores the (1) users/[USERNAME].hash and (2) users/[USERNAME].email files under the web roo... |
| CVE-2006-0104 | — | — | 2.6% | Jan 6, 2006 | Directory traversal vulnerability in TinyPHPForum 3.6 and earlier allows remote attackers to create a new user account, ... |
| CVE-2006-0095 | — | — | 0.4% | Jan 6, 2006 | dm-crypt in Linux kernel 2.6.15 and earlier does not clear a structure before it is freed, which leads to a memory discl... |
| CVE-2006-0099 | — | — | 4.4% | Jan 6, 2006 | PHP remote file include vulnerability in (1) include/templates/categories/default.php and (2) certain other include/temp... |
| CVE-2006-0097 | — | — | 8.6% | Jan 6, 2006 | Stack-based buffer overflow in the create_named_pipe function in libmysql.c in PHP 4.3.10 and 4.4.x before 4.4.3 for Win... |
| CVE-2006-0341 | — | — | 1.9% | Jan 6, 2006 | Cross-site scripting (XSS) vulnerability in WCONSOLE.DLL in Rockliffe MailSite 5.x and 6.1.22 and earlier allows remote ... |
| CVE-2006-0063 | — | — | 1.3% | Jan 5, 2006 | Cross-site scripting (XSS) vulnerability in phpBB 2.0.19, when "Allowed HTML tags" is enabled, allows remote attackers t... |
| CVE-2006-0091 | — | — | 1.2% | Jan 5, 2006 | Cross-site scripting (XSS) vulnerability in webmail in Open-Xchange 0.8.1-6 and earlier, with "Inline HTML" enabled, all... |
| CVE-2006-0084 | — | — | 1.6% | Jan 5, 2006 | Cross-site scripting vulnerability in index.php in raSMP 2.0.0 and earlier allows remote attackers to inject arbitrary w... |
| CVE-2006-0094 | — | — | 1.4% | Jan 5, 2006 | PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code ... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now