2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-6140 | — | — | 2.1% | Nov 28, 2006 | PHP remote file inclusion vulnerability in Sisfo Kampus 2006 (Semarang 3) allows remote attackers to execute arbitrary P... |
| CVE-2006-6141 | — | — | 3.7% | Nov 28, 2006 | Buffer overflow in Tftpd32 3.01 allows remote attackers to cause a denial of service via a long GET or PUT request, whic... |
| CVE-2006-4181 | — | — | 5.0% | Nov 28, 2006 | Format string vulnerability in the sqllog function in the SQL accounting code for radiusd in GNU Radius 1.2 and 1.3 allo... |
| CVE-2006-6133 | — | — | 52.0% | Nov 28, 2006 | Stack-based buffer overflow in Visual Studio Crystal Reports for Microsoft Visual Studio .NET 2002 and 2002 SP1, .NET 20... |
| CVE-2006-6134 | — | — | 41.3% | Nov 28, 2006 | Heap-based buffer overflow in the WMCheckURLScheme function in WMVCORE.DLL in Microsoft Windows Media Player (WMP) 10.00... |
| CVE-2006-6130 | — | — | 1.1% | Nov 28, 2006 | Apple Mac OS X AppleTalk allows local users to cause a denial of service (kernel panic) by calling the AIOCREGLOCALZN io... |
| CVE-2006-6131 | — | — | 0.9% | Nov 28, 2006 | Untrusted search path vulnerability in (1) WSAdminServer and (2) WSWebServer in Kerio WebSTAR (4D WebSTAR Server Suite) ... |
| CVE-2006-6132 | — | — | 1.4% | Nov 28, 2006 | Multiple SQL injection vulnerabilities in Link Exchange Lite allow remote attackers to execute arbitrary SQL commands vi... |
| CVE-2006-5896 | — | — | 1.6% | Nov 27, 2006 | REMLAB Web Mech Designer 2.0.5 allows remote attackers to obtain the full path of the script via an incorrect Tonnage pa... |
| CVE-2006-5750 | — | — | 13.5% | Nov 27, 2006 | Directory traversal vulnerability in the DeploymentFileRepository class in JBoss Application Server (jbossas) 3.2.4 thro... |
| CVE-2006-6125 | — | — | 14.5% | Nov 27, 2006 | Heap-based buffer overflow in the wireless driver (WG311ND5.SYS) 2.3.1.10 for NetGear WG311v1 wireless adapter allows re... |
| CVE-2006-6126 | — | — | 0.4% | Nov 27, 2006 | Apple Mac OS X allows local users to cause a denial of service (memory corruption) via a crafted Mach-O binary with a ma... |
| CVE-2006-6129 | — | — | 1.3% | Nov 27, 2006 | Integer overflow in the fatfile_getarch2 in Apple Mac OS X allows local users to cause a denial of service and possibly ... |
| CVE-2006-6127 | — | — | 0.5% | Nov 27, 2006 | Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue... |
| CVE-2006-6128 | — | — | 0.5% | Nov 27, 2006 | The ReiserFS functionality in Linux kernel 2.6.18, and possibly other versions, allows local users to cause a denial of ... |
| CVE-2006-5965 | — | — | 0.3% | Nov 26, 2006 | PassGo SSO Plus 2.1.0.32, and probably earlier versions, uses insecure permissions (Everyone/Full Control) for the PassG... |
| CVE-2006-6122 | — | — | 1.2% | Nov 26, 2006 | Multiple buffer overflows in TIN before 1.8.2 have unspecified impact and attack vectors, a different vulnerability than... |
| CVE-2006-6121 | — | — | 11.9% | Nov 26, 2006 | Acer Notebook LunchApp.APlunch ActiveX control allows remote attackers to execute arbitrary commands by calling the Run ... |
| CVE-2006-6123 | — | — | 1.3% | Nov 26, 2006 | Coppermine Photo Gallery (CPG) 1.4.8 stable, with register_globals enabled, allows remote attackers to bypass XSS protec... |
| CVE-2006-6124 | — | — | 1.7% | Nov 26, 2006 | Cross-site scripting (XSS) vulnerability in SeleniumServer Web Server 1.0 allows remote attackers to inject arbitrary we... |
| CVE-2006-5869 | — | — | 1.5% | Nov 26, 2006 | pstotext before 1.9 allows user-assisted attackers to execute arbitrary commands via shell metacharacters in a file name... |
| CVE-2006-6114 | — | — | — | Nov 26, 2006 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-5854. Reason: This candidate is a duplicate of... |
| CVE-2006-6118 | — | — | 1.9% | Nov 26, 2006 | Cross-site scripting (XSS) vulnerability in thumbs.php in mmgallery 1.55 allows remote attackers to inject arbitrary web... |
| CVE-2006-6108 | — | — | 1.3% | Nov 26, 2006 | Cross-site scripting (XSS) vulnerability in EC-CUBE before 1.0.1a-beta allows remote attackers to inject arbitrary web s... |
| CVE-2006-6109 | — | — | 1.4% | Nov 26, 2006 | Multiple SQL injection vulnerabilities in CandyPress Store 3.5.2.14 allow remote attackers to execute arbitrary SQL comm... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now