2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-6687 | — | — | 0.9% | Dec 21, 2006 | Cross-site scripting (XSS) vulnerability in Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 Network Edition (N... |
| CVE-2006-6686 | — | — | 2.0% | Dec 21, 2006 | PHP remote file inclusion vulnerability in sender.php in Carsen Klock TextSend 1.5 allows remote attackers to execute ar... |
| CVE-2006-6689 | — | — | 1.2% | Dec 21, 2006 | Multiple PHP remote file inclusion vulnerabilities in Paristemi 0.8.3 and earlier allow remote attackers to execute arbi... |
| CVE-2006-6692 | — | — | 7.8% | Dec 21, 2006 | Multiple format string vulnerabilities in zabbix before 20061006 allow attackers to cause a denial of service (applicati... |
| CVE-2006-6693 | — | — | 2.6% | Dec 21, 2006 | Multiple buffer overflows in zabbix before 20061006 allow attackers to cause a denial of service (application crash) and... |
| CVE-2006-6688 | — | — | 1.3% | Dec 21, 2006 | Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 Network Edition (NE) (aka WebAPP.NET) allows remote attackers ... |
| CVE-2006-6695 | — | — | 1.0% | Dec 21, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in index.php in Carsen Klock TextSend 1.5 allow remote attackers to ... |
| CVE-2006-6694 | — | — | 2.4% | Dec 21, 2006 | Directory traversal vulnerability in include/config.php in E-Uploader Pro 1.0 and earlier allows remote attackers to exe... |
| CVE-2006-6104 | — | — | 5.0% | Dec 21, 2006 | The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in Mono does not properly verify local pathnames, whi... |
| CVE-2006-6684 | — | — | 2.9% | Dec 21, 2006 | Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd before 2.4 allows remote attackers to cause a denial of servi... |
| CVE-2006-6685 | — | — | 0.4% | Dec 21, 2006 | Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd 2.3.3 allows local users to cause a denial of service (applic... |
| CVE-2006-6682 | — | — | 1.9% | Dec 21, 2006 | Pedro Lineu Orso chetcpasswd 2.3.3 provides a different error message when a request with a valid username fails, compar... |
| CVE-2006-6680 | — | — | 0.3% | Dec 21, 2006 | Pedro Lineu Orso chetcpasswd before 2.3.1 does not document the need for 0400 permissions on /etc/chetcpasswd.allow, whi... |
| CVE-2006-6683 | — | — | 1.3% | Dec 21, 2006 | Pedro Lineu Orso chetcpasswd 2.4.1 and earlier verifies and updates user accounts via custom code that processes /etc/sh... |
| CVE-2006-6681 | — | — | 1.4% | Dec 21, 2006 | Pedro Lineu Orso chetcpasswd 2.3.3 does not have a rate limit for client requests, which might allow remote attackers to... |
| CVE-2006-6678 | — | — | 1.8% | Dec 21, 2006 | The edit_textarea function in form-file.c in Netrik 1.15.4 and earlier does not properly verify temporary filenames when... |
| CVE-2006-6675 | — | — | 1.9% | Dec 21, 2006 | Cross-site scripting (XSS) vulnerability in Novell NetWare 6.5 Support Pack 5 and 6 and Novell Apache on NetWare 2.0.48 ... |
| CVE-2006-6677 | — | — | 2.1% | Dec 21, 2006 | ESET NOD32 Antivirus before 1.1743 allows remote attackers to cause a denial of service (crash) via a crafted .CHM file ... |
| CVE-2006-6673 | — | — | 2.8% | Dec 21, 2006 | WinFtp Server 2.0.2 allows remote attackers to cause a denial of service (crash) via long (1) PASV, (2) LIST, (3) USER, ... |
| CVE-2006-6672 | — | — | 1.0% | Dec 21, 2006 | Multiple SQL injection vulnerabilities in Burak Yylmaz Download Portal allow remote attackers to execute arbitrary SQL c... |
| CVE-2006-6671 | — | — | 1.0% | Dec 21, 2006 | SQL injection vulnerability in down.asp in Burak Yylmaz Download Portal allows remote attackers to execute arbitrary SQL... |
| CVE-2006-6674 | — | — | 0.3% | Dec 21, 2006 | Ozeki HTTP-SMS Gateway 1.0, and possibly earlier, stores usernames and passwords in plaintext in the HKLM\Software\Ozeki... |
| CVE-2006-6676 | — | — | 5.7% | Dec 21, 2006 | Integer overflow in the (a) OLE2 and (b) CHM parsers for ESET NOD32 Antivirus before 1.1743 allows remote attackers to e... |
| CVE-2006-6660 | — | — | 2.4% | Dec 20, 2006 | The nodeType function in KDE libkhtml 4.2.0 and earlier, as used by Konquerer, KMail, and other programs, allows remote ... |
| CVE-2006-6669 | — | — | 1.4% | Dec 20, 2006 | Cross-site scripting (XSS) vulnerability in export_handler.php in WebCalendar 1.0.4 and earlier allows remote attackers ... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now