2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-6720 | — | — | 2.6% | Dec 23, 2006 | PHP remote file inclusion vulnerability in admin/index_sitios.php in Azucar CMS 1.3 allows remote attackers to execute a... |
| CVE-2006-6719 | — | — | 3.9% | Dec 23, 2006 | The ftp_syst function in ftp-basic.c in Free Software Foundation (FSF) GNU wget 1.10.2 allows remote attackers to cause ... |
| CVE-2006-6722 | — | — | 2.3% | Dec 23, 2006 | Bandwebsite (aka Bandsite portal system) 1.5 allows remote attackers to create administrative accounts via a direct requ... |
| CVE-2006-6713 | — | — | 5.8% | Dec 23, 2006 | Buffer overflow in Hitachi Directory Server 2 P-2444-A124 before 02-11-/K on Windows, and P-1B44-A121 before 02-10-/V on... |
| CVE-2006-6711 | — | — | 2.3% | Dec 23, 2006 | PHP remote file inclusion vulnerability in compteur/mapage.php in Newxooper 0.9.1 allows remote attackers to execute arb... |
| CVE-2006-6710 | — | — | 2.3% | Dec 23, 2006 | Multiple PHP remote file inclusion vulnerabilities in PgmReloaded 0.8.5 and earlier allow remote attackers to execute ar... |
| CVE-2006-6709 | — | — | 1.0% | Dec 23, 2006 | Multiple SQL injection vulnerabilities in MGinternet Property Site Manager allow remote attackers to execute arbitrary S... |
| CVE-2006-6712 | — | — | 1.4% | Dec 23, 2006 | Cross-site scripting (XSS) vulnerability in SugarCRM Open Source 4.5.0f and earlier allows remote attackers to inject ar... |
| CVE-2006-6707 | — | — | 54.3% | Dec 23, 2006 | Stack-based buffer overflow in the NeoTraceExplorer.NeoTraceLoader ActiveX control (NeoTraceExplorer.dll) in NeoTrace Ex... |
| CVE-2006-6708 | — | — | 1.7% | Dec 23, 2006 | Cross-site scripting (XSS) vulnerability in listings.asp in MGinternet Property Site Manager allows remote attackers to ... |
| CVE-2006-6705 | — | — | 1.4% | Dec 23, 2006 | Multiple unspecified vulnerabilities in the template files in Soumu Workflow for Groupmax 01-00 through 01-01, Soumu Wor... |
| CVE-2006-6704 | — | — | 1.0% | Dec 23, 2006 | Cross-site scripting (XSS) vulnerability in the Webadmin in @Mail before 4.6 allows remote attackers to inject arbitrary... |
| CVE-2006-6706 | — | — | 0.9% | Dec 23, 2006 | SQL injection vulnerability in Soumu Workflow for Groupmax 01-00 through 01-01, Soumu Workflow 02-00 through 03-03, and ... |
| CVE-2006-6700 | — | — | 1.1% | Dec 23, 2006 | Cross-site scripting (XSS) vulnerability in @Mail WebMail allows remote attackers to inject arbitrary web script or HTML... |
| CVE-2006-6701 | — | — | 1.0% | Dec 23, 2006 | Cross-site request forgery (CSRF) vulnerability in util.pl in @Mail WebMail 4.51, and util.php in 5.x before 5.03, allow... |
| CVE-2006-6702 | — | — | 1.1% | Dec 23, 2006 | Cross-site scripting (XSS) vulnerability in Global.pm in @Mail before 4.61 allows remote attackers to inject arbitrary w... |
| CVE-2006-6703 | — | — | 1.9% | Dec 23, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in Oracle Portal 9i and 10g allow remote attackers to inject arbitra... |
| CVE-2006-6715 | — | — | 2.9% | Dec 23, 2006 | PHP remote file inclusion vulnerability in footer.inc.php in PowerClan 1.14a and earlier, when register_globals is enabl... |
| CVE-2006-6714 | — | — | 2.5% | Dec 23, 2006 | Multiple memory leaks in Hitachi Directory Server 2 P-2444-A124 before 02-11-/K on Windows, and P-1B44-A121 before 02-10... |
| CVE-2006-6699 | — | — | 1.0% | Dec 23, 2006 | Multiple CRLF injection vulnerabilities in Oracle Portal 9.0.2 and possibly other versions allow remote attackers to inj... |
| CVE-2006-6698 | — | — | 0.4% | Dec 22, 2006 | The GConf daemon (gconfd) in GConf 2.14.0 creates temporary files under directories with names based on the username, ev... |
| CVE-2006-6697 | — | — | 10.3% | Dec 22, 2006 | CRLF injection vulnerability in webapp/jsp/calendar.jsp in Oracle Portal 10g and earlier, including 9.0.2, allows remote... |
| CVE-2006-6696 | — | — | 3.3% | Dec 22, 2006 | Double free vulnerability in Microsoft Windows 2000, XP, 2003, and Vista allows local users to gain privileges by callin... |
| CVE-2006-6686 | — | — | 2.0% | Dec 21, 2006 | PHP remote file inclusion vulnerability in sender.php in Carsen Klock TextSend 1.5 allows remote attackers to execute ar... |
| CVE-2006-6690 | — | — | 6.0% | Dec 21, 2006 | rtehtmlarea/pi1/class.tx_rtehtmlarea_pi1.php in Typo3 4.0.0 through 4.0.3, 3.7 and 3.8 with the rtehtmlarea extension, a... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now