2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-0128Buffer overflow in the IMAP service of Rockliffe MailSite before 6.1.22.1 allows remote attackers to have an unknown imp...
CVE-2006-0127Directory traversal vulnerability in the IMAP service of Rockliffe MailSite before 6.1.22.1 allows remote authenticated ...
CVE-2006-0112Cross-site scripting (XSS) vulnerability in index.php in Enhanced Simple PHP Gallery 1.7 allows remote attackers to inje...
CVE-2006-0113Enhanced Simple PHP Gallery 1.7 allows remote attackers to obtain the full path of the application via a direct request ...
CVE-2006-0109Cross-site scripting vulnerability in category.php in Modular Merchant Shopping Cart allows remote attackers to inject a...
CVE-2006-0108SQL injection vulnerability in mcl_login.asp in Timecan CMS allows remote attackers to execute arbitrary SQL commands vi...
CVE-2006-0111Cross-site scripting vulnerability in index.php in Boxcar Media Shopping Cart allows remote attackers to inject arbitrar...
CVE-2006-0110Cross-site scripting (XSS) vulnerability in escribir.php in Foro Domus 2.10 allows remote attackers to inject arbitrary ...
CVE-2006-0107SQL injection vulnerability in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the viewID para...
CVE-2006-0106gdi/driver.c and gdi/printdrv.c in Wine 20050930, and other versions, implement the SETABORTPROC GDI Escape function cal...
CVE-2006-0096wan/sdla.c in Linux kernel 2.6.x before 2.6.11 and 2.4.x before 2.4.29 does not require the CAP_SYS_RAWIO privilege for ...
CVE-2006-0098The dupfdopen function in sys/kern/kern_descrip.c in OpenBSD 3.7 and 3.8 allows local users to re-open arbitrary files b...
CVE-2006-0100Buffer overflow in NicoFTP 3.0.1.19 and earlier might allow local users to execute arbitrary code via a long string in t...
CVE-2006-0101Multiple cross-site scripting (XSS) vulnerabilities in sBLOG 0.7.1 Beta 20051202 and earlier allow remote attackers to i...
CVE-2006-0102Cross-site scripting (XSS) vulnerability in TinyPHPForum (TPF) 3.6 and earlier allows remote attackers to inject arbitra...
CVE-2006-0103TinyPHPForum 3.6 and earlier stores the (1) users/[USERNAME].hash and (2) users/[USERNAME].email files under the web roo...
CVE-2006-0104Directory traversal vulnerability in TinyPHPForum 3.6 and earlier allows remote attackers to create a new user account, ...
CVE-2006-0095dm-crypt in Linux kernel 2.6.15 and earlier does not clear a structure before it is freed, which leads to a memory discl...
CVE-2006-0099PHP remote file include vulnerability in (1) include/templates/categories/default.php and (2) certain other include/temp...
CVE-2006-0097Stack-based buffer overflow in the create_named_pipe function in libmysql.c in PHP 4.3.10 and 4.4.x before 4.4.3 for Win...
CVE-2006-0341Cross-site scripting (XSS) vulnerability in WCONSOLE.DLL in Rockliffe MailSite 5.x and 6.1.22 and earlier allows remote ...
CVE-2006-0063Cross-site scripting (XSS) vulnerability in phpBB 2.0.19, when "Allowed HTML tags" is enabled, allows remote attackers t...
CVE-2006-0091Cross-site scripting (XSS) vulnerability in webmail in Open-Xchange 0.8.1-6 and earlier, with "Inline HTML" enabled, all...
CVE-2006-0084Cross-site scripting vulnerability in index.php in raSMP 2.0.0 and earlier allows remote attackers to inject arbitrary w...
CVE-2006-0094PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code ...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now