2006 CVE Vulnerabilities
7,145 CVEs published in 2006.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-7203 | — | — | 0.5% | May 14, 2007 | The compat_sys_mount function in fs/compat.c in Linux kernel 2.6.20 and earlier allows local users to cause a denial of ... |
| CVE-2006-3456 | — | — | 3.9% | May 11, 2007 | The Symantec NAVOPTS.DLL ActiveX control (aka Symantec.Norton.AntiVirus.NAVOptions) 12.2.0.13, as used in Norton AntiVir... |
| CVE-2006-7195 | — | — | 5.5% | May 10, 2007 | Cross-site scripting (XSS) vulnerability in implicit-objects.jsp in Apache Tomcat 5.0.0 through 5.0.30 and 5.5.0 through... |
| CVE-2006-7196 | — | — | 72.2% | May 10, 2007 | Cross-site scripting (XSS) vulnerability in the calendar application example in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0... |
| CVE-2006-7202 | — | — | 1.4% | May 9, 2007 | The dofreePDF function in includes/pdf.php in Mambo 4.6.1 does not properly check access rights for database content, wh... |
| CVE-2006-7201 | — | — | 2.3% | Apr 30, 2007 | EMC RSA Security SiteKey does not set the secure qualifier on the SiteKey Flash token (aka the PassMark Flash shared obj... |
| CVE-2006-7199 | — | — | 2.3% | Apr 30, 2007 | EMC RSA Security SiteKey allows remote attackers to display the correct image via a man-in-the-middle (MITM) attack in w... |
| CVE-2006-7200 | — | — | 1.5% | Apr 30, 2007 | EMC RSA Security SiteKey issues challenge-bypass tokens that persist forever without a cancellation interface for end us... |
| CVE-2006-4520 | — | — | 2.9% | Apr 30, 2007 | ncp in Novell eDirectory before 8.7.3 SP9, and 8.8.x before 8.8.1 FTF2, does not properly handle NCP fragments with a ne... |
| CVE-2006-7198 | — | — | 2.4% | Apr 30, 2007 | Unspecified vulnerability in IBM WebSphere Application Server (WAS) before 5.1.1.14, and WAS for z/OS 601 before 6.0.2.1... |
| CVE-2006-7197 | — | — | 8.3% | Apr 25, 2007 | The AJP connector in Apache Tomcat 5.5.15 uses an incorrect length for chunks, which can cause a buffer over-read in the... |
| CVE-2006-7194 | — | — | 5.1% | Apr 18, 2007 | PHP remote file inclusion vulnerability in modules/Mysqlfinder/MysqlfinderAdmin.php in Agora 1.4 RC1, when register_glob... |
| CVE-2006-7193 | — | — | 1.5% | Apr 12, 2007 | PHP remote file inclusion vulnerability in unit_test/test_cases.php in Smarty 2.6.1 allows remote attackers to execute a... |
| CVE-2006-7192 | — | — | 22.8% | Apr 10, 2007 | Microsoft ASP .NET Framework 2.0.50727.42 does not properly handle comment (/* */) enclosures, which allows remote attac... |
| CVE-2006-4250 | — | — | 1.3% | Apr 10, 2007 | Buffer overflow in man and mandb (man-db) 2.4.3 and earlier allows local users to execute arbitrary code via crafted arg... |
| CVE-2006-5586 | — | — | 2.9% | Apr 4, 2007 | The Graphics Rendering Engine in Microsoft Windows 2000 SP4 and XP SP2 allows local users to gain privileges via "invali... |
| CVE-2006-7190 | — | — | 0.8% | Apr 3, 2007 | Cross-site scripting (XSS) vulnerability in cgi-bin/user-lib/topics.pl in web-app.net WebAPP before 20060515 allows remo... |
| CVE-2006-7186 | — | — | 0.9% | Apr 3, 2007 | cgi-lib/subs.pl in web-app.net WebAPP before 0.9.9.3.5 allows attackers to open list files in "profile and other functio... |
| CVE-2006-7188 | — | — | 1.1% | Apr 3, 2007 | The search function in cgi-lib/user-lib/search.pl in web-app.net WebAPP before 20060909 allows remote attackers to read ... |
| CVE-2006-7187 | — | — | 0.8% | Apr 3, 2007 | Cross-site scripting (XSS) vulnerability in the show_recent_searches function in cgi-lib/user-lib/search.pl in web-app.n... |
| CVE-2006-7189 | — | — | 0.8% | Apr 3, 2007 | Cross-site scripting (XSS) vulnerability in cgi-bin/admin/logs.cgi in web-app.net WebAPP before 20060403 allows remote a... |
| CVE-2006-7191 | — | — | 0.3% | Apr 3, 2007 | Untrusted search path vulnerability in lamdaemon.pl in LDAP Account Manager (LAM) before 1.0.0 allows local users to gai... |
| CVE-2006-5820 | — | — | 8.4% | Apr 2, 2007 | The LinkSBIcons method in the SuperBuddy ActiveX control (Sb.SuperBuddy.1) in America Online 9.0 Security Edition derefe... |
| CVE-2006-7184 | — | — | 1.9% | Mar 30, 2007 | Multiple PHP remote file inclusion vulnerabilities in Exhibit Engine (EE) 1.22, and possibly earlier, allow remote attac... |
| CVE-2006-7183 | — | — | 3.9% | Mar 30, 2007 | PHP remote file inclusion vulnerability in styles.php in Exhibit Engine (EE) 1.22 and earlier allows remote attackers to... |
Check if your code is affected by 2006 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now