2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-6398 | — | — | 1.0% | Dec 8, 2006 | Multiple SQL injection vulnerabilities in Superfreaker Studios UPublisher 1.0 allow remote attackers to execute arbitrar... |
| CVE-2006-6399 | — | — | 1.0% | Dec 8, 2006 | SQL injection vulnerability in Superfreaker Studios UPublisher 1.0 allows remote attackers to execute arbitrary SQL comm... |
| CVE-2006-4249 | — | — | 0.9% | Dec 7, 2006 | Unspecified vulnerability in PlonePAS in Plone 2.5 and 2.5.1, when anonymous member registration is enabled, allows an a... |
| CVE-2006-6384 | — | — | 1.3% | Dec 7, 2006 | Absolute path traversal vulnerability in abitwhizzy.php before 20061204 allows remote attackers to read arbitrary files ... |
| CVE-2006-6380 | — | — | 1.7% | Dec 7, 2006 | Cross-site scripting (XSS) vulnerability in index.asp in Ultimate HelpDesk allows remote attackers to inject arbitrary w... |
| CVE-2006-6381 | — | — | 2.5% | Dec 7, 2006 | Directory traversal vulnerability in getfile.asp in Ultimate HelpDesk allows remote attackers to read arbitrary files vi... |
| CVE-2006-6382 | — | — | 0.3% | Dec 7, 2006 | The control panel for Positive Software H-Sphere before 2.5.0 RC3 creates log files in a user's directory with insecure ... |
| CVE-2006-6373 | — | — | 1.2% | Dec 7, 2006 | PhpMyAdmin 2.7.0-pl2 allows remote attackers to obtain sensitive information via a direct request for libraries/common.l... |
| CVE-2006-6369 | — | — | 1.0% | Dec 7, 2006 | SQL injection vulnerability in lib/entry_reply_entry.php in Invision Community Blog Mod 1.2.4 allows remote attackers to... |
| CVE-2006-6370 | — | — | 1.0% | Dec 7, 2006 | SQL injection vulnerability in forum/modules/gallery/post.php in Invision Gallery 2.0.7 allows remote attackers to cause... |
| CVE-2006-6371 | — | — | 1.2% | Dec 7, 2006 | Cross-site scripting (XSS) vulnerability in pbguestbook.php in JAB Guest Book allows remote attackers to inject arbitrar... |
| CVE-2006-6372 | — | — | 1.0% | Dec 7, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in pbguestbook.php in JAB Guest Book 20061205 allow remote attackers... |
| CVE-2006-6374 | — | — | 1.4% | Dec 7, 2006 | Multiple CRLF injection vulnerabilities in PhpMyAdmin 2.7.0-pl2 allow remote attackers to inject arbitrary HTTP headers ... |
| CVE-2006-6375 | — | — | 1.4% | Dec 7, 2006 | Cross-site scripting (XSS) vulnerability in display.php in Simple Machines Forum (SMF) 1.1 Final and earlier allows remo... |
| CVE-2006-6376 | — | — | 4.0% | Dec 7, 2006 | Multiple directory traversal vulnerabilities in fm.php in Simple File Manager (SFM) 0.24a allow remote attackers to use ... |
| CVE-2006-6377 | — | — | 3.0% | Dec 7, 2006 | Uploadscript 1.2 and earlier stores sensitive data under the web root with insufficient access control, which allows rem... |
| CVE-2006-6378 | — | — | 1.3% | Dec 7, 2006 | BTSaveMySql 1.2 stores sensitive data under the web root with insufficient access control, which allows remote attackers... |
| CVE-2006-6362 | — | — | — | Dec 7, 2006 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-5873. Reason: This candidate is a duplicate of... |
| CVE-2006-6235 | — | — | 5.7% | Dec 7, 2006 | A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows att... |
| CVE-2006-6358 | — | — | 1.3% | Dec 7, 2006 | SQL injection vulnerability in the login function in auth.inc in Stefan Frech online-bookmarks 0.6.12 allows remote atta... |
| CVE-2006-6360 | — | — | 3.7% | Dec 7, 2006 | PHP remote file inclusion vulnerability in activate.php in PHP Upload Center 2.0 allows remote attackers to execute arbi... |
| CVE-2006-6359 | — | — | 1.8% | Dec 7, 2006 | Cross-site scripting (XSS) vulnerability in Stefan Frech online-bookmarks 0.6.12 allows remote attackers to inject arbit... |
| CVE-2006-6365 | — | — | 1.4% | Dec 7, 2006 | SQL injection vulnerability in detail.asp in DUware DUpaypal 3.1, and possibly earlier, allows remote attackers to execu... |
| CVE-2006-6361 | — | — | 5.9% | Dec 7, 2006 | Heap-based buffer overflow in the uploadprogress_php_rfc1867_file function in uploadprogress.c in Bitflux Upload Progres... |
| CVE-2006-6363 | — | — | 2.3% | Dec 7, 2006 | Cross-site scripting (XSS) vulnerability in admin.pl in BlueSocket Secure Controller (BSC) before 5.2, or without 5.1.1-... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now