| ID | Summary | Flags | Max Score |
|---|---|---|---|
| CVE-2006-5000 | Multiple buffer overflows in WS_FTP Server 5.05 before Hotfix 1, and possibly other versions down to... | S | |
| CVE-2006-5001 | Unspecified vulnerability in the log analyzer in WS_FTP Server 5.05 before Hotfix 1, and possibly ot... | S | |
| CVE-2006-5002 | Unspecified vulnerability in IBM Inventory Scout for AIX 2.2.0.0 through 2.2.0.9 (invscoutClient_VPD... | S | |
| CVE-2006-5003 | Unspecified vulnerability in the named8 command in IBM AIX 5.2.0 and 5.3.0 allows local users to exe... | S | |
| CVE-2006-5004 | Unspecified vulnerability in the rdist command in IBM AIX 5.2.0 and 5.3.0 allows local users to over... | S | |
| CVE-2006-5005 | Unspecified vulnerability in bos.net.tcp.client in IBM AIX 5.2.0 and 5.3.0 allows local users to exe... | S | |
| CVE-2006-5006 | Buffer overflow in cfgmgr in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary code vi... | S | |
| CVE-2006-5007 | Untrusted search path vulnerability in uucp in IBM AIX 5.2.0 and 5.3.0 allows local users to local u... | S | |
| CVE-2006-5008 | Unspecified vulnerability in utape in IBM AIX 5.2.0 and 5.3.0 allows attackers to execute arbitrary ... | S | |
| CVE-2006-5009 | Unspecified vulnerability in xlock in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrar... | S | |
| CVE-2006-5010 | Untrusted search path vulnerability in acctctl in IBM AIX 5.3.0 allows local users to execute arbitr... | S | |
| CVE-2006-5011 | Untrusted search path vulnerability in snappd in IBM AIX 5.2.0 and 5.3.0 allows local users to execu... | S | |
| CVE-2006-5012 | Unspecified vulnerability in Sun Solaris 8, 9, and 10 before 20060925 allows local users to cause a ... | S | |
| CVE-2006-5013 | Sun Solaris 10 before patch 118855-16 (20060925), when run on x64 systems using IPv6, allows remote ... | | |
| CVE-2006-5014 | Unspecified vulnerability in cPanel before 10.9.0 12 Tree allows remote authenticated users to gain ... | S | |
| CVE-2006-5015 | PHP remote file inclusion vulnerability in hit.php in Kietu 3.2 allows remote attackers to execute a... | | |
| CVE-2006-5016 | Unrestricted file upload vulnerability in admin/x_image.php in Szava Gyula and Csaba Tamas e-Vision ... | | |
| CVE-2006-5017 | SQL injection vulnerability in admin/all_users.php in Szava Gyula and Csaba Tamas e-Vision CMS, prob... | E | |
| CVE-2006-5018 | ContentKeeper 123.25 and earlier places passwords in cleartext in an INPUT element in cgi-bin/ck/cha... | E | |
| CVE-2006-5019 | Google Mini 4.4.102.M.36 and earlier allows remote attackers to obtain sensitive information via a d... | | |
| CVE-2006-5020 | Multiple PHP remote file inclusion vulnerabilities in SolidState 0.4 and earlier allow remote attack... | E | |
| CVE-2006-5021 | Multiple PHP remote file inclusion vulnerabilities in redgun RedBLoG 0.5 allow remote attackers to e... | E | |
| CVE-2006-5022 | PHP remote file inclusion vulnerability in includes/global.php in Joshua Wilson pNews System 1.1.0 (... | E | |
| CVE-2006-5023 | SQL injection vulnerability in kategori.asp in xweblog 2.1 and earlier allows remote attackers to ex... | E | |
| CVE-2006-5024 | Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.4 hav... | S | |
| CVE-2006-5025 | Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.2 hav... | S | |
| CVE-2006-5026 | Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.3 hav... | S | |
| CVE-2006-5027 | Jeroen Vennegoor JevonCMS, possibly pre alpha, allows remote attackers to obtain sensitive informati... | | |
| CVE-2006-5028 | Directory traversal vulnerability in filemanager/filemanager.php in SWsoft Plesk 7.5 Reload and Ples... | E | |
| CVE-2006-5029 | SQL injection vulnerability in thread.php in WoltLab Burning Board (wBB) 2.3.x allows remote attacke... | | |
| CVE-2006-5030 | SQL injection vulnerability in modules/messages/index.php in exV2 2.0.4.3 and earlier allows remote ... | E | |
| CVE-2006-5031 | Directory traversal vulnerability in app/webroot/js/vendors.php in Cake Software Foundation CakePHP ... | E S | |
| CVE-2006-5032 | PHP remote file inclusion vulnerability in dix.php3 in PHPartenaire 1.0 allows remote attackers to e... | E | |
| CVE-2006-5033 | Unspecified vulnerability in StoresAndCalendarsList.cgi in Paul Smith Computer Services vCAP 1.9.0 B... | E | |
| CVE-2006-5034 | Directory traversal vulnerability in Paul Smith Computer Services vCAP 1.9.0 Beta and earlier allows... | E | |
| CVE-2006-5035 | Multiple cross-site scripting (XSS) vulnerabilities in Paul Smith Computer Services vCAP 1.7.0 allow... | E | |
| CVE-2006-5036 | MySource Matrix 3.8 and earlier, and MySource 2.x, allow remote attackers to use the application as ... | | |
| CVE-2006-5037 | MySource Matrix after 3.8 allows remote attackers to use the application as an HTTP proxy server via... | | |
| CVE-2006-5038 | The FiWin SS28S WiFi VoIP SIP/Skype Phone, firmware version 01_02_07, has a hard-coded username and ... | | |
| CVE-2006-5039 | Unspecified vulnerability in Events 1.3 beta module (com_events) for Joomla! has unspecified impact ... | | |
| CVE-2006-5040 | Unspecified vulnerability in SEF404x (com_sef) for Joomla! has unspecified impact and attack vectors... | | |
| CVE-2006-5041 | Unspecified vulnerability in Hot Properties (possibly com_hotproperties) 0.97 and earlier for Joomla... | | |
| CVE-2006-5042 | Unspecified vulnerability in mosMedia (com_mosmedia) 1.0.8 and earlier for Joomla! has unspecified i... | | |
| CVE-2006-5043 | Multiple PHP remote file inclusion vulnerabilities in the Joomlaboard Forum Component (com_joomlaboa... | E S | |
| CVE-2006-5044 | Unspecified vulnerability in Prince Clan (Princeclan) Chess component (com_pcchess) 0.8 and earlier ... | | |
| CVE-2006-5045 | Unspecified vulnerability in PollXT component (com_pollxt) 1.22.07 and earlier for Joomla! has unspe... | E | |
| CVE-2006-5046 | Unspecified vulnerability in RS Gallery2 (com_rsgallery2) 1.11.3 and earlier for Joomla! has unspeci... | | |
| CVE-2006-5047 | Unspecified vulnerability in rsgallery2.html.php in RS Gallery2 component (com_rsgallery2) before 1.... | | |
| CVE-2006-5048 | Multiple PHP remote file inclusion vulnerabilities in Security Images (com_securityimages) component... | E S | |
| CVE-2006-5049 | Unspecified vulnerability in Classifieds (com_classifieds) component 1.3 and earlier for Joomla! has... | | |
| CVE-2006-5050 | Directory traversal vulnerability in httpd in Rob Landley BusyBox allows remote attackers to read ar... | E | |
| CVE-2006-5051 | Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of ser... | | |
| CVE-2006-5052 | Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows rem... | S | |
| CVE-2006-5053 | PHP remote file inclusion vulnerability in webnews/template.php in Web-News 1.6.3 and earlier allows... | E | |
| CVE-2006-5054 | SQL injection vulnerability in uye/uye_ayrinti.asp in iyzi Forum 1 Beta 2 and earlier allows remote ... | E | |
| CVE-2006-5055 | PHP remote file inclusion vulnerability in admin/testing/tests/0004_init_urls.php in syntaxCMS 1.1.1... | E | |
| CVE-2006-5056 | Cross-site scripting (XSS) vulnerability in index.php in Opial Audio/Video Download Management 1.0 a... | E | |
| CVE-2006-5057 | Multiple cross-site scripting (XSS) vulnerabilities in Ktools.net PhotoStore allow remote attackers ... | E | |
| CVE-2006-5058 | Buffer overflow in (1) Call of Duty 1.5b and earlier, (2) Call of Duty United Offensive 1.51b and ea... | E | |
| CVE-2006-5059 | Multiple cross-site scripting (XSS) vulnerabilities in WWWthreads 5.4.2 and earlier allow remote att... | E | |
| CVE-2006-5060 | Cross-site scripting (XSS) vulnerability in login.php in Jamroom 3.0.16 and possibly earlier allows ... | E | |
| CVE-2006-5061 | PHP remote file inclusion vulnerability in mcf.php in Advanced-Clan-Script (AVCX) 3.4 and earlier al... | E | |
| CVE-2006-5062 | PHP remote file inclusion vulnerability in templates/pb/language/lang_nl.php in PBLang (PBL) 4.66z a... | E | |
| CVE-2006-5063 | Cross-site scripting (XSS) vulnerability in Elog 2.6.1 allows remote attackers to inject arbitrary w... | | |
| CVE-2006-5064 | Multiple cross-site scripting (XSS) vulnerabilities in BirdBlog 1.4 and earlier allow remote attacke... | E | |
| CVE-2006-5065 | PHP remote file inclusion vulnerability in libs/dbmax/mysql.php in ZoomStats 1.0.2 and earlier, when... | E | |
| CVE-2006-5066 | Multiple cross-site scripting (XSS) vulnerabilities in DanPHPSupport 0.5, and other versions before ... | E | |
| CVE-2006-5067 | PHP remote file inclusion vulnerability in loader.php in PHP System Administration Toolkit (PHPSaTK)... | | |
| CVE-2006-5068 | PHP remote file inclusion vulnerability in admin/index.php in Brudaswen (1) BrudaNews 1.1 and earlie... | E | |
| CVE-2006-5069 | Cross-site scripting (XSS) vulnerability in class.tx_indexedsearch.php in the Indexed Search 2.9.0 e... | S | |
| CVE-2006-5070 | PHP remote file inclusion vulnerability in fsl2/objects/fs_form_links.php in faceStones Personal 2.0... | E | |
| CVE-2006-5071 | Multiple cross-site scripting (XSS) vulnerabilities in eyeOS before 0.9.1 allow remote attackers to ... | S | |
| CVE-2006-5072 | The System.CodeDom.Compiler classes in Novell Mono create temporary files with insecure permissions,... | S | |
| CVE-2006-5073 | Unspecified vulnerability in Sun Solaris 8, 9 and 10 allows remote attackers to cause a denial of se... | S | |
| CVE-2006-5074 | Cross-site scripting (XSS) vulnerability in home.php in PHP Invoice 2.2 allows remote attackers to i... | E | |
| CVE-2006-5075 | The Kernel SSL Proxy service (svc:/network/ssl/proxy) in Sun Solaris 10 before 20060926 allows remot... | S | |
| CVE-2006-5076 | Multiple PHP remote file inclusion vulnerabilities in OpenConcept Back-End 0.4.5 allow remote attack... | E | |
| CVE-2006-5077 | PHP remote file inclusion vulnerability in admin/admin_topic_action_logging.php in Chris Smith Miner... | E | |
| CVE-2006-5078 | PHP remote file inclusion vulnerability in view/general.php in Kristian Niemi Polaring 00.04.03 and ... | E | |
| CVE-2006-5079 | PHP remote file inclusion vulnerability in class.mysql.php in Matt Humphrey paBugs 2.0 Beta 3 and ea... | E | |
| CVE-2006-5080 | Cross-site scripting (XSS) vulnerability in the search function in Six Apart Movable Type 3.3 to 3.3... | S | |
| CVE-2006-5081 | PHP remote file inclusion vulnerability in acc.php in QuickBlogger (QB) 1.4 allows remote attackers ... | | |
| CVE-2006-5082 | Unspecified vulnerability in Sugar Suite Open Source (SugarCRM) before 4.2.1 Patch C (20060917) has ... | S | |
| CVE-2006-5083 | PHP remote file inclusion vulnerability in includes/functions_portal.php in Integrated MODs (IM) Por... | E | |
| CVE-2006-5084 | Format string vulnerability in the NSRunAlertPanel function in eBay Skype for Mac 1.5.*.79 and earli... | | |
| CVE-2006-5085 | Static code injection vulnerability in config.php in Blog Pixel Motion 2.1.1 allows remote attackers... | E | |
| CVE-2006-5086 | Blog Pixel Motion 2.1.1 allows remote attackers to change the username and password for the admin us... | E | |
| CVE-2006-5087 | Multiple PHP remote file inclusion vulnerabilities in evoBB 0.3 and earlier allow remote attackers t... | E | |
| CVE-2006-5088 | PHP remote file inclusion vulnerability in connected_users.lib.php3 in phpHeaven phpMyChat 0.1 allow... | E | |
| CVE-2006-5089 | PHP remote file inclusion vulnerability in mybic_server.php in Jim Plush My-BIC 0.6.5 allows remote ... | E | |
| CVE-2006-5090 | Multiple cross-site scripting (XSS) vulnerabilities in Phoenix Evolution CMS (PECMS) allow remote at... | E | |
| CVE-2006-5091 | Unspecified vulnerability in HP-UX B.11.11 and B.11.23 CIFS Server (Samba) allows local users to gai... | S | |
| CVE-2006-5092 | PHP remote file inclusion vulnerability in navigation/menu.php in A-Blog 2 allows remote attackers t... | E | |
| CVE-2006-5093 | PHP remote file inclusion vulnerability in index.php in Tagmin Control Center in TagIt! Tagboard 2.1... | E | |
| CVE-2006-5094 | PHP remote file inclusion vulnerability in includes/functions_kb.php in the phpBB XS 2 (Spain versio... | E | |
| CVE-2006-5095 | PHP remote file inclusion vulnerability in index.php in MyPhotos 0.1.3b beta allows remote attackers... | | |
| CVE-2006-5096 | Multiple cross-site scripting (XSS) vulnerabilities in index.php in VirtueMart (formerly known as ma... | E | |
| CVE-2006-5097 | PHP remote file inclusion vulnerability in index.php in net2ftp, possibly 0.1 through 0.62, allows r... | | |
| CVE-2006-5098 | lib/exec/fetch.php in DokuWiki before 2006-03-09e allows remote attackers to cause a denial of servi... | E S | |
| CVE-2006-5099 | lib/exec/fetch.php in DokuWiki before 2006-03-09e, when conf[imconvert] is configured to use ImageMa... | E S | |
| CVE-2006-5100 | PHP remote file inclusion vulnerability in parse/parser.php in WEB//NEWS (aka webnews) 1.4 and earli... | E | |
| CVE-2006-5101 | PHP remote file inclusion vulnerability in include.php in Comdev CSV Importer 3.1 and possibly 4.1, ... | | |
| CVE-2006-5102 | PHP remote file inclusion vulnerability in include/editfunc.inc.php in Sebastian Baumann and Philipp... | E | |
| CVE-2006-5103 | PHP remote file inclusion vulnerability in admin/index2.php in bbsNew 2.0.1 allows remote attackers ... | E | |
| CVE-2006-5104 | SQL injection vulnerability in global.php in Jelsoft vBulletin 2.x allows remote attackers to execut... | E | |
| CVE-2006-5105 | Multiple PHP remote file inclusion vulnerabilities in SyntaxCMS 1.1.1 through 1.3 allow remote attac... | S | |
| CVE-2006-5106 | Cross-site scripting (XSS) vulnerability in FacileForms before 1.4.7 for Mambo and Joomla!, when eit... | S | |
| CVE-2006-5107 | Multiple SQL injection vulnerabilities in Devellion CubeCart 2.0.x allow remote attackers to execute... | E | |
| CVE-2006-5108 | Multiple cross-site scripting (XSS) vulnerabilities in Devellion CubeCart 2.0.x allow remote attacke... | E | |
| CVE-2006-5109 | Devellion CubeCart 2.0.x allows remote attackers to obtain sensitive information via a direct reques... | E | |
| CVE-2006-5110 | Cross-site scripting (XSS) vulnerability in home.php in PHP Invoice 2.2 allows remote attackers to i... | | |
| CVE-2006-5111 | The libksba library 0.9.12 and possibly other versions, as used by gpgsm in the newpg package on SUS... | S | |
| CVE-2006-5112 | Buffer overflow in InterVations NaviCOPA Web Server 2.01 allows remote attackers to execute arbitrar... | E | |
| CVE-2006-5113 | Directory traversal vulnerability in common.php in Yuuki Yoshizawa Exporia 0.3.0 allows remote attac... | | |
| CVE-2006-5114 | Multiple cross-site scripting (XSS) vulnerabilities in wgate in SAP Internet Transaction Server (ITS... | E | |
| CVE-2006-5115 | Directory traversal vulnerability in kgcall.php in KGB 1.87 allows remote attackers to include and e... | E | |
| CVE-2006-5116 | Multiple cross-site request forgery (CSRF) vulnerabilities in phpMyAdmin before 2.9.1-rc1 allow remo... | S | |
| CVE-2006-5117 | phpMyAdmin before 2.9.1-rc1 has a libraries directory under the web document root with insufficient ... | S | |
| CVE-2006-5118 | PHP remote file inclusion vulnerability in index.php3 in the PDD package for PHPSelect Web Developme... | E | |
| CVE-2006-5119 | Multiple cross-site scripting (XSS) vulnerabilities in Zen Cart 1.3.5 allow remote attackers to inje... | E | |
| CVE-2006-5120 | Multiple cross-site scripting (XSS) vulnerabilities in Scott Metoyer Red Mombin 0.7 allow remote att... | E | |
| CVE-2006-5121 | SQL injection vulnerability in modules/Downloads/admin.php in the Admin section of PostNuke 0.762 al... | | |
| CVE-2006-5122 | Multiple cross-site scripting (XSS) vulnerabilities in Mercury SiteScope 8.2 (8.1.2.0) allow remote ... | | |
| CVE-2006-5123 | Multiple PHP remote file inclusion vulnerabilities in Albrecht Guenther PHProjekt 5.1.x before 5.1.2... | S | |
| CVE-2006-5124 | Multiple PHP remote file inclusion vulnerabilities in Joshua Muheim phpMyWebmin 1.0 allow remote att... | E | |
| CVE-2006-5125 | Directory traversal vulnerability in window.php, possibly used by home.php, in Joshua Muheim phpMyWe... | E | |
| CVE-2006-5126 | PHP remote file inclusion vulnerability in index.php in John Himmelman (aka DaRk2k1) PowerPortal 1.3... | E | |
| CVE-2006-5127 | Multiple cross-site scripting (XSS) vulnerabilities in Bartels Schoene ConPresso before 4.0.5a allow... | E S | |
| CVE-2006-5128 | SQL injection vulnerability in index.php in Bartels Schoene ConPresso before 4.0.5a allows remote at... | S | |
| CVE-2006-5129 | Multiple cross-site scripting (XSS) vulnerabilities in ph03y3nk just another flat file (JAF) CMS 4.0... | | |
| CVE-2006-5130 | Multiple cross-site scripting (XSS) vulnerabilities in ph03y3nk just another flat file (JAF) CMS 4.0... | | |
| CVE-2006-5131 | module/shout/jafshout.php (aka the shoutbox) in ph03y3nk just another flat file (JAF) CMS 4.0 RC1 al... | | |
| CVE-2006-5132 | Multiple PHP remote file inclusion vulnerabilities in phpMyAgenda 3.0 Final and earlier allow remote... | S | |
| CVE-2006-5133 | Buffer overflow in GuildFTPd 0.999.13 allows remote attackers to have an unknown impact, possibly co... | S | |
| CVE-2006-5134 | Mercury SiteScope 8.2 (8.1.2.0) allows remote authenticated users to cause a denial of service (loss... | | |
| CVE-2006-5135 | Multiple PHP remote file inclusion vulnerabilities in A-Blog 2 allow remote attackers to execute arb... | E | |
| CVE-2006-5136 | Multiple PHP remote file inclusion vulnerabilities in ubbt.inc.php in Groupee UBB.threads 6.5.1.1 al... | E | |
| CVE-2006-5137 | Multiple direct static code injection vulnerabilities in Groupee UBB.threads 6.5.1.1 allow remote at... | E | |
| CVE-2006-5138 | Groupee UBB.threads 6.5.1.1 allows remote attackers to obtain sensitive information via a direct req... | E | |
| CVE-2006-5139 | Unspecified vulnerability in MkPortal allows remote attackers to corrupt web site content, and possi... | | |
| CVE-2006-5140 | SQL injection vulnerability in display.php in Lappy512 PHP Krazy Image Host Script (phpkimagehost) 0... | E | |
| CVE-2006-5141 | PHP remote file inclusion vulnerability in script.php in Kevin A. Gordon Open Geo Targeting (aka geo... | | |
| CVE-2006-5142 | Stack-based buffer overflow in CA BrightStor ARCserve Backup R11.5 client and server allows remote a... | S | |
| CVE-2006-5143 | Multiple buffer overflows in CA BrightStor ARCserve Backup r11.5 SP1 and earlier, r11.1, and 9.01; B... | S | |
| CVE-2006-5144 | Cross-site scripting (XSS) vulnerability in userupload.php in OlateDownload 3.4.0 allows remote atta... | | |
| CVE-2006-5145 | Multiple SQL injection vulnerabilities in OlateDownload 3.4.0 allow remote attackers to execute arbi... | E | |
| CVE-2006-5146 | Multiple cross-site scripting (XSS) vulnerabilities in Yblog allow remote attackers to inject arbitr... | E | |
| CVE-2006-5147 | PHP remote file inclusion vulnerability in wamp_dir/setup/yesno.phtml in VAMP Webmail 2.0beta1 and e... | E | |
| CVE-2006-5148 | Multiple PHP remote file inclusion vulnerabilities in Forum82 2.5.2b and earlier allow remote attack... | E | |
| CVE-2006-5149 | Multiple directory traversal vulnerabilities in OpenBiblio before 0.5.2 allow remote attackers to in... | S | |
| CVE-2006-5150 | SQL injection vulnerability in the reports system in OpenBiblio before 0.5.2 allows remote attackers... | S | |
| CVE-2006-5151 | Unspecified vulnerability in HP Ignite-UX server before C.6.9.150 for HP-UX B.11.00, B.11.11, and B.... | S | |
| CVE-2006-5152 | Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer allows remote attackers to i... | | |
| CVE-2006-5153 | The (1) fwdrv.sys and (2) khips.sys drivers in Sunbelt Kerio Personal Firewall 4.3.268 and earlier d... | E | |
| CVE-2006-5154 | PHP remote file inclusion vulnerability in cp/sig.php in DeluxeBB 1.09 and earlier allows remote att... | E S | |
| CVE-2006-5155 | PHP remote file inclusion vulnerability in core/pdf.php in VideoDB 2.2.1 and earlier allows remote a... | E | |
| CVE-2006-5156 | Buffer overflow in McAfee ePolicy Orchestrator before 3.5.0.720 and ProtectionPilot before 1.1.1.126... | E S | |
| CVE-2006-5157 | Format string vulnerability in the ActiveX control (ATXCONSOLE.OCX) in TrendMicro OfficeScan Corpora... | S | |
| CVE-2006-5158 | The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote atta... | S | |
| CVE-2006-5159 | Stack-based buffer overflow in Mozilla Firefox allows remote attackers to execute arbitrary code via... | | |
| CVE-2006-5160 | Multiple unspecified vulnerabilities in Mozilla Firefox have unspecified vectors and impact, as clai... | | |
| CVE-2006-5161 | IBM Client Security Password Manager stores and distributes saved passwords based upon the title of ... | | |
| CVE-2006-5162 | wininet.dll in Microsoft Internet Explorer 6.0 SP2 and earlier allows remote attackers to cause a de... | E | |
| CVE-2006-5163 | IBM Informix Dynamic Server 10.UC3RC1 Trial for Linux and possibly other versions creates /tmp/insta... | E | |
| CVE-2006-5164 | Multiple cross-site scripting (XSS) vulnerabilities in cart.php in Sum Effect Software digiSHOP 4.0 ... | E | |
| CVE-2006-5165 | PHP remote file inclusion vulnerability in inc/functions.inc.php in Skrypty PPA Gallery 1.0 and earl... | E | |
| CVE-2006-5166 | PHP remote file inclusion vulnerability in functions.php in PHP Web Scripts Easy Banner Free allows ... | E | |
| CVE-2006-5167 | Multiple PHP remote file inclusion vulnerabilities in BasiliX 1.1.1 and earlier allow remote attacke... | E | |
| CVE-2006-5168 | Cross-site scripting (XSS) vulnerability in the search functionality in Simon Brown Pebble 2.0.0 RC1... | S | |
| CVE-2006-5169 | Cross-site scripting (XSS) vulnerability in John Himmelman (aka DaRk2k1) PowerPortal 1.1 allows remo... | | |
| CVE-2006-5170 | pam_ldap in nss_ldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other di... | S | |
| CVE-2006-5171 | Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brights... | S | |
| CVE-2006-5172 | Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brights... | E | |
| CVE-2006-5173 | Linux kernel does not properly save or restore EFLAGS during a context switch, or reset the flags wh... | | |
| CVE-2006-5174 | The copy_from_user function in the uaccess code in Linux kernel 2.6 before 2.6.19-rc1, when running ... | S | |
| CVE-2006-5175 | Cross-site request forgery (CSRF) vulnerability in the administrative interface for the TeraStation ... | | |
| CVE-2006-5176 | Buffer overflow in NTLM authentication in MailEnable Professional 2.0 and Enterprise 2.0 allows remo... | S | |
| CVE-2006-5177 | The NTLM authentication in MailEnable Professional 2.0 and Enterprise 2.0 allows remote attackers to... | S | |
| CVE-2006-5178 | Race condition in the symlink function in PHP 5.1.6 and earlier allows local users to bypass the ope... | E | |
| CVE-2006-5179 | Intoto iGateway VPN and iGateway SSL-VPN allow context-dependent attackers to cause a denial of serv... | | |
| CVE-2006-5180 | PHP remote file inclusion vulnerability in include/main.inc.php in Sebastian Baumann and Philipp Wol... | E | |
| CVE-2006-5181 | Multiple PHP remote file inclusion vulnerabilities in Joshua Muheim phpMyWebmin 1.0 allow remote att... | E | |
| CVE-2006-5182 | PHP remote file inclusion vulnerability in frontpage.php in Dan Jensen Travelsized CMS 0.4 and earli... | E | |
| CVE-2006-5183 | Multiple PHP remote file inclusion vulnerabilities in Dayfox Designs Dayfox Blog 2.0 allow remote at... | | |
| CVE-2006-5184 | SQL injection vulnerability in PKR Internet Taskjitsu before 2.0.6 allows remote attackers to execut... | S | |
| CVE-2006-5185 | Eval injection vulnerability in Template.php in HAMweather 3.9.8.4 and earlier allows remote attacke... | E S | |
| CVE-2006-5186 | PHP remote file inclusion vulnerability in functions.php in phpMyProfiler 0.9.6 and earlier, when re... | E S | |
| CVE-2006-5187 | PHP remote file inclusion vulnerability in includes/functions.php in Bulletin Board Ace (BBaCE) 3.5 ... | E | |
| CVE-2006-5188 | Directory traversal vulnerability in download.php in webGENEius GOOP Gallery 2.0.2 allows remote att... | E | |
| CVE-2006-5189 | PHP remote file inclusion vulnerability in funzioni/lib/show_hlp.php in klinza professional cms 5.0.... | E | |
| CVE-2006-5190 | Multiple cross-site scripting (XSS) vulnerabilities in osCommerce 2.2 Milestone 2 Update 060817 allo... | E | |
| CVE-2006-5191 | PHP remote file inclusion vulnerability in includes/functions_static_topics.php in the Nivisec Stati... | E | |
| CVE-2006-5192 | PHP remote file inclusion vulnerability in includes/footer.php in phpGreetz 0.99 and earlier allows ... | E | |
| CVE-2006-5193 | PHP remote file inclusion vulnerability in index.php in Josh Schmidt WikyBlog 1.2.3 and earlier allo... | E | |
| CVE-2006-5194 | Cross-site scripting (XSS) vulnerability in index.php in net2ftp 0.93 allows remote attackers to inj... | | |
| CVE-2006-5195 | Multiple cross-site scripting (XSS) vulnerabilities in Wheatblog 1.0 and 1.1 allow remote attackers ... | | |
| CVE-2006-5196 | The HTTP interface in the Motorola SURFboard SB4200 Cable Modem allows remote attackers to cause a d... | E | |
| CVE-2006-5197 | PDshopPro stores sensitive information under the web root with insufficient access control, which al... | | |
| CVE-2006-5198 | The WZFILEVIEW.FileViewCtrl.61 ActiveX control (aka Sky Software "FileView" ActiveX control) for Win... | | |
| CVE-2006-5199 | Adobe Contribute Publishing Server leaks the administrator password in logs that are created during ... | | |
| CVE-2006-5200 | Unspecified vulnerability in Adobe Breeze 5 Licensed Server and Breeze 5.1 Licensed Server allows at... | S | |
| CVE-2006-5201 | Multiple packages on Sun Solaris, including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and earlier, ... | S | |
| CVE-2006-5202 | Linksys WRT54g firmware 1.00.9 does not require credentials when making configuration changes, which... | E | |
| CVE-2006-5203 | Invision Power Board (IPB) 2.1.7 and earlier allows remote restricted administrators to inject arbit... | | |
| CVE-2006-5204 | Cross-site scripting (XSS) vulnerability in action_admin/member.php in Invision Power Board (IPB) 2.... | S | |
| CVE-2006-5205 | Directory traversal vulnerability in Invision Gallery 2.0.7 allows remote attackers to read arbitrar... | E | |
| CVE-2006-5206 | SQL injection vulnerability in Invision Gallery 2.0.7 allows remote attackers to execute arbitrary S... | E | |
| CVE-2006-5207 | PHP remote file inclusion vulnerability in images/smileys/smileys_packs.php in phpMyTeam 2.0, when r... | E | |
| CVE-2006-5208 | Multiple SQL injection vulnerabilities in PHP Classifieds 7.1 allow remote attackers to execute arbi... | E | |
| CVE-2006-5209 | PHP remote file inclusion vulnerability in admin/admin_topic_action_logging.php in Admin Topic Actio... | E | |
| CVE-2006-5210 | Directory traversal vulnerability in IronWebMail before 6.1.1 HotFix-17 allows remote attackers to r... | E S | |
| CVE-2006-5211 | Trend Micro OfficeScan 6.0 in Client/Server/Messaging (CSM) Suite for SMB 2.0 before 6.0.0.1385, and... | S | |
| CVE-2006-5212 | Trend Micro OfficeScan 6.0 in Client/Server/Messaging (CSM) Suite for SMB 2.0 before 6.0.0.1385, and... | S | |
| CVE-2006-5213 | Sun Solaris 10 before 20061006 uses "incorrect and insufficient permission checks" that allow local ... | S | |
| CVE-2006-5214 | Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212,... | S | |
| CVE-2006-5215 | The Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 2006... | | |
| CVE-2006-5216 | Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) 1.34 allows remote attackers to e... | E | |
| CVE-2006-5217 | SQL injection vulnerability in giris_yap.asp in Emek Portal 2.1 allows remote attackers to execute a... | E | |
| CVE-2006-5218 | Integer overflow in the systrace_preprepl function (STRIOCREPLACE) in systrace in OpenBSD 3.9 and Ne... | E S | |
| CVE-2006-5219 | SQL injection vulnerability in blog/index.php in the blog module in Moodle 1.6.2 allows remote attac... | E S | |
| CVE-2006-5220 | Multiple PHP remote file inclusion vulnerabilities in WebYep 1.1.9, when register_globals is enabled... | E | |
| CVE-2006-5221 | Multiple SQL injection vulnerabilities in Cahier de texte 2.0 allow remote attackers to execute arbi... | E S | |
| CVE-2006-5222 | Multiple PHP remote file inclusion vulnerabilities in Dimension of phpBB 0.2.6 and earlier allow rem... | E | |
| CVE-2006-5223 | PHP remote file inclusion vulnerability in includes/functions_user_viewed_posts.php in the Nivisec U... | E | |
| CVE-2006-5224 | PHP remote file inclusion vulnerability in includes/logger_engine.php in Dimitri Seitz Security Suit... | E | |
| CVE-2006-5225 | Multiple SQL injection vulnerabilities in AAIportal before 1.4.0 allow remote attackers to execute a... | S | |
| CVE-2006-5226 | PHP remote file inclusion vulnerability in moteur/moteur.php in Prologin.fr Freenews 1.1 and earlier... | E | |
| CVE-2006-5227 | Cross-site scripting (XSS) vulnerability in admin.php in TorrentFlux 2.1 allows remote attackers to ... | E | |
| CVE-2006-5228 | Multiple SQL injection vulnerabilities in the Google Gadget login.php (gadget/login.php) in Rob Hens... | E S | |
| CVE-2006-5229 | OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under li... | | |
| CVE-2006-5230 | PHP remote file inclusion vulnerability in forum.php in FreeForum 0.9.7 and earlier allows remote at... | E | |
| CVE-2006-5231 | Grandstream GXP-2000 VoIP Desktop Phone, firmware version 1.1.0.5, allows remote attackers to cause ... | S | |
| CVE-2006-5232 | Multiple PHP remote file inclusion vulnerabilities in iSearch 2.16 allow remote attackers to execute... | E | |
| CVE-2006-5233 | Polycom SoundPoint IP 301 VoIP Desktop Phone, firmware version 1.4.1.0040, allows remote attackers t... | | |
| CVE-2006-5234 | Multiple PHP remote file inclusion vulnerabilities in phpWebSite 0.10.2 allow remote attackers to ex... | E | |
| CVE-2006-5235 | PHP remote file inclusion vulnerability in includes/functions_kb.php in Dimension of phpBB 0.2.6 and... | | |
| CVE-2006-5236 | SQL injection vulnerability in search.php in 4images 1.7.x allows remote authenticated users to exec... | E | |
| CVE-2006-5237 | SQL injection vulnerability in Blue Smiley Organizer before 4.46 allows remote attackers to execute ... | S | |
| CVE-2006-5238 | Unspecified vulnerability in the file upload module in Blue Smiley Organizer before 4.45 has unknown... | | |
| CVE-2006-5239 | Multiple cross-site scripting (XSS) vulnerabilities in eXpBlog 0.3.5 and earlier allow remote attack... | E S | |
| CVE-2006-5240 | PHP remote file inclusion vulnerability in engine/require.php in Docmint 2.0 and earlier, when regis... | E | |
| CVE-2006-5241 | Multiple PHP remote file inclusion vulnerabilities in OpenDock Easy Gallery 1.4 and earlier, when re... | E | |
| CVE-2006-5242 | SQL injection vulnerability in Etomite Content Management System (CMS) before 0.6.1.1 allows remote ... | S | |
| CVE-2006-5243 | Multiple PHP remote file inclusion vulnerabilities in OpenDock Easy Doc 1.4 and earlier, when regist... | E | |
| CVE-2006-5244 | Multiple PHP remote file inclusion vulnerabilities in OpenDock Easy Blog 1.4 and earlier, when regis... | E | |
| CVE-2006-5245 | Eazy Cart allows remote attackers to bypass authentication and gain administrative access via a dire... | | |
| CVE-2006-5246 | Eazy Cart allows remote attackers to change prices and other critical fields via unspecified vectors... | | |
| CVE-2006-5247 | Multiple cross-site scripting (XSS) vulnerabilities in Eazy Cart allow remote attackers to inject ar... | E | |
| CVE-2006-5248 | Eazy Cart stores sensitive information under the web root with insufficient access control, which al... | E | |
| CVE-2006-5249 | PHP remote file inclusion vulnerability in tagmin/delTagUser.php in TagIt! Tagboard 2.1.B Build 2 (t... | | |
| CVE-2006-5250 | PHP remote file inclusion vulnerability in lib/googlesearch/GoogleSearch.php in BlueShoes 4.6_public... | | |
| CVE-2006-5251 | PHP remote file inclusion vulnerability in index.php in Deep CMS 2.0a allows remote attackers to exe... | E | |
| CVE-2006-5252 | PHP remote file inclusion vulnerability in includes/core.lib.php in Webmedia Explorer 2.8.7 allows r... | | |
| CVE-2006-5253 | PHP remote file inclusion vulnerability in strload.php in Dayana Networks phpOnline (aka PHP-Online)... | E | |
| CVE-2006-5254 | PHP remote file inclusion vulnerability in registration_detailed.inc.php in Mark Van Bellen Detailed... | E | |
| CVE-2006-5255 | PHP remote file inclusion vulnerability in addnews.php in Greg Neustaetter gCards 1.13 allows remote... | E | |
| CVE-2006-5256 | PHP remote file inclusion vulnerability in claroline/inc/lib/import.lib.php in Claroline 1.8.0 and e... | E | |
| CVE-2006-5257 | PHP remote file inclusion vulnerability in modules/forum/include/config.php in Ciamos Content Manage... | E | |
| CVE-2006-5258 | The spell checking component of (1) Asbru Web Content Management before 6.1.22, (2) Asbru Web Conten... | S | |
| CVE-2006-5259 | PHP remote file inclusion vulnerability in param_editor.php in Compteur 2 allows remote attackers to... | E | |
| CVE-2006-5260 | PHP remote file inclusion vulnerability in compteur.php in Compteur 2 allows remote attackers to exe... | | |
| CVE-2006-5261 | Multiple PHP remote file inclusion vulnerabilities in PHPMyNews 1.4 and earlier allow remote attacke... | E | |
| CVE-2006-5262 | CRLF injection vulnerability in lib/session.php in Hastymail 1.5 and earlier before 20061008 allows ... | S | |
| CVE-2006-5263 | Directory traversal vulnerability in templates/header.php3 in phpMyAgenda 3.1 and earlier allows rem... | E | |
| CVE-2006-5264 | Cross-site scripting (XSS) vulnerability in sql.php in MysqlDumper 1.21 b6 allows remote attackers t... | | |
| CVE-2006-5265 | Unspecified vulnerability in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allows re... | | |
| CVE-2006-5266 | Multiple buffer overflows in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allow rem... | | |
| CVE-2006-5268 | Unspecified vulnerability in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execu... | | |
| CVE-2006-5269 | Heap-based buffer overflow in an unspecified procedure in Trend Micro ServerProtect 5.7 and 5.58 all... | | |
| CVE-2006-5270 | Integer overflow in the Microsoft Malware Protection Engine (mpengine.dll), as used by Windows Live ... | | |
| CVE-2006-5271 | Integer underflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, a... | | |
| CVE-2006-5272 | Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 ... | | |
| CVE-2006-5273 | Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 a... | S | |
| CVE-2006-5274 | Integer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, an... | S | |
| CVE-2006-5276 | Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta... | E | |
| CVE-2006-5277 | Off-by-one error in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Uni... | | |
| CVE-2006-5278 | Integer overflow in the Real-Time Information Server (RIS) Data Collector service (RisDC.exe) in Cis... | S | |
| CVE-2006-5280 | PHP remote file inclusion vulnerability in includes/import-archive.php in Leicestershire communityPo... | E | |
| CVE-2006-5281 | PHP remote file inclusion vulnerability in naboard_pnr.php in n@board 3.1.9e and earlier allows remo... | E | |
| CVE-2006-5282 | Multiple PHP remote file inclusion vulnerabilities in SH-News 3.1 and earlier allow remote attackers... | E | |
| CVE-2006-5283 | PHP remote file inclusion vulnerability in ftag.php in Minichat 6.0 allows remote attackers to execu... | E | |
| CVE-2006-5284 | PHP remote file inclusion vulnerability in auth/phpbb.inc.php in Shen Cheng-Da PHP News Reader (aka ... | E | |
| CVE-2006-5285 | SQL injection vulnerability in index.php in XeoPort 0.81, and possibly earlier, allows remote attack... | | |
| CVE-2006-5286 | Unspecified vulnerability in IKE.NLM in Novell BorderManager 3.8 allows attackers to cause a denial ... | S | |
| CVE-2006-5287 | Multiple SQL injection vulnerabilities in sign.php in Xeobook 0.93 allow remote attackers to execute... | E | |
| CVE-2006-5288 | Cisco 2700 Series Wireless Location Appliances before 2.1.34.0 have a default administrator username... | S | |
| CVE-2006-5289 | Multiple PHP remote file inclusion vulnerabilities in Vtiger CRM 4.2 and earlier allow remote attack... | E | |
| CVE-2006-5290 | The ESS/ Network Controller and MicroServer Web Server components of Xerox WorkCentre and WorkCentre... | S | |
| CVE-2006-5291 | PHP remote file inclusion vulnerability in admin/includes/spaw/spaw_control.class.php in Download-En... | E | |
| CVE-2006-5292 | PHP remote file inclusion vulnerability in photo_comment.php in Exhibit Engine 1.5 RC 4 and earlier ... | E | |
| CVE-2006-5293 | Cross-site scripting (XSS) vulnerability in index.php in PhpOutsourcing Noah's Classifieds 1.3 and e... | S | |
| CVE-2006-5294 | Cross-site scripting (XSS) vulnerability in index.php in phplist before 2.10.3 allows remote attacke... | E S | |
| CVE-2006-5295 | Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cause a denial of servi... | S | |
| CVE-2006-5296 | PowerPoint in Microsoft Office 2003 does not properly handle a container object whose position value... | E | |
| CVE-2006-5297 | Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating t... | | |
| CVE-2006-5298 | The mutt_adv_mktemp function in the Mutt mail client 1.5.12 and earlier does not properly verify tha... | | |
| CVE-2006-5299 | Multiple cross-site scripting (XSS) vulnerabilities in index.php in Gcontact 0.6.5 allow remote atta... | E | |
| CVE-2006-5300 | Unspecified vulnerability in HP Version Control Agent before 2.1.5 allows remote authenticated users... | S | |
| CVE-2006-5301 | PHP remote file inclusion vulnerability in includes/antispam.php in the SpamBlockerMODv 1.0.2 and ea... | E | |
| CVE-2006-5302 | Multiple PHP remote file inclusion vulnerabilities in Redaction System 1.0000 allow remote attackers... | E | |
| CVE-2006-5303 | Secure Computing SafeWord RemoteAccess 2.1 allows local users to obtain the UserCenter webportal pas... | | |
| CVE-2006-5304 | PHP remote file inclusion vulnerability in inc/settings.php in IncCMS Core 1.0.0 and earlier allows ... | E | |
| CVE-2006-5305 | PHP remote file inclusion vulnerability in lat2cyr.php in the lat2cyr 1.0.1 and earlier phpbb module... | E | |
| CVE-2006-5306 | Multiple PHP remote file inclusion vulnerabilities in the Journals System module 1.0.2 (RC2) and ear... | E | |
| CVE-2006-5307 | Multiple PHP remote file inclusion vulnerabilities in AFGB GUESTBOOK 2.2 allow remote attackers to e... | E | |
| CVE-2006-5308 | Multiple PHP remote file inclusion vulnerabilities in Open Conference Systems (OCS) before 1.1.6 all... | E S | |
| CVE-2006-5309 | PHP remote file inclusion vulnerability in language/lang_french/lang_prillian_faq.php in the Prillia... | E | |
| CVE-2006-5310 | PHP remote file inclusion vulnerability in common/visiteurs/include/menus.inc.php in J-Pierre DEZELU... | E | |
| CVE-2006-5311 | PHP remote file inclusion vulnerability in includes/archive/archive_topic.php in Buzlas 2006-1 Full ... | E | |
| CVE-2006-5312 | PHP remote file inclusion vulnerability in shoutbox.php in the Ajax Shoutbox 0.0.5 and earlier modul... | E | |
| CVE-2006-5313 | Hastymail 1.5 and earlier before 20061008 allows remote authenticated users to send arbitrary SMTP c... | S | |
| CVE-2006-5314 | PHP remote file inclusion vulnerability in ftag.php in TribunaLibre 3.12 Beta allows remote attacker... | E | |
| CVE-2006-5315 | PHP remote file inclusion vulnerability in main.php in registroTL allows remote attackers to execute... | E | |
| CVE-2006-5316 | registroTL stores sensitive information under the web root with insufficient access control, which a... | E | |
| CVE-2006-5317 | PHP remote file inclusion vulnerability in index.php in eboli allows remote attackers to execute arb... | E | |
| CVE-2006-5318 | PHP remote file inclusion vulnerability in index.php in Nayco JASmine (aka Jasmine-Web) allows remot... | E | |
| CVE-2006-5319 | Directory traversal vulnerability in redir.php in Foafgen 0.3 allows remote attackers to read arbitr... | E | |
| CVE-2006-5320 | Directory traversal vulnerability in getimg.php in Album Photo Sans Nom 1.6 allows remote attackers ... | E | |
| CVE-2006-5321 | Multiple cross-site scripting (XSS) vulnerabilities in phplist before 2.10.3 allow remote attackers ... | E | |
| CVE-2006-5322 | Multiple SQL injection vulnerabilities in phplist before 2.10.3 allow remote attackers to execute ar... | | |
| CVE-2006-5323 | Unspecified vulnerability in IBM WebSphere Application Server before 6.1.0.2 has unspecified impact ... | S | |
| CVE-2006-5324 | The Web Services Notification (WSN) security component of IBM WebSphere Application Server before 6.... | S | |
| CVE-2006-5325 | Multiple PHP remote file inclusion vulnerabilities in Dimitri Seitz Security Suite IP Logger in dwin... | | |
| CVE-2006-5326 | PHP remote file inclusion vulnerability in language/lang/lang_contact_faq.php in the Prillian French... | | |
| CVE-2006-5327 | Untrusted search path vulnerability in OpenBase SQL 10.0 and earlier, as used in Apple Xcode 2.2 2.2... | E S | |
| CVE-2006-5328 | OpenBase SQL 10.0 and earlier, as used in Apple Xcode 2.2 2.2 and earlier and possibly other product... | | |
| CVE-2006-5329 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5330 | CRLF injection vulnerability in Adobe Flash Player plugin 9.0.16 and earlier for Windows, 7.0.63 and... | | |
| CVE-2006-5331 | The altivec_unavailable_exception function in arch/powerpc/kernel/traps.c in the Linux kernel before... | S | |
| CVE-2006-5332 | Unspecified vulnerability in xdb.dbms_xdbz in the XMLDB component for Oracle Database 9.2.0.6 and 10... | S | |
| CVE-2006-5333 | Unspecified vulnerability in Oracle Spatial component in Oracle Database 10.2.0.2 has unknown impact... | S | |
| CVE-2006-5334 | Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.7, and 10.1.... | S | |
| CVE-2006-5335 | Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.2 have unknown impact an... | S | |
| CVE-2006-5336 | Multiple unspecified vulnerabilities in the Change Data Capture (CDC) component in Oracle Database 9... | S | |
| CVE-2006-5337 | Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.0.1.5, 9.2.0.8, 10.1.0.5,... | S | |
| CVE-2006-5338 | Unspecified vulnerability in the Core RDBMS component in Oracle Database 10.1.0.5 has unknown impact... | S | |
| CVE-2006-5339 | Unspecified vulnerability in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, ... | S | |
| CVE-2006-5340 | Multiple unspecified vulnerabilities in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5... | S | |
| CVE-2006-5341 | Multiple unspecified vulnerabilities in XMLDB component in Oracle Database 9.2.0.8, 10.1.0.5, and 10... | S | |
| CVE-2006-5342 | Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.6, and 10.1.... | S | |
| CVE-2006-5343 | Unspecified vulnerability in Database Scheduler component in Oracle Database 10.1.0.3 has unknown im... | S | |
| CVE-2006-5344 | Multiple unspecified vulnerabilities in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5... | S | |
| CVE-2006-5345 | Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.7, and 10.1.... | S | |
| CVE-2006-5346 | Unspecified vulnerability in Oracle HTTP Server 9.2.0.7, as used in Oracle Collaboration Suite 9.0.4... | S | |
| CVE-2006-5347 | Unspecified vulnerability in Oracle HTTP Server 9.2.0.7 and Oracle Collaboration Suite 9.0.4.2 has u... | S | |
| CVE-2006-5348 | Unspecified vulnerability in Oracle HTTP Server 9.2.0.7, Oracle Collaboration Suite 9.0.4.2, and Ora... | S | |
| CVE-2006-5349 | Unspecified vulnerability in Oracle HTTP Server 9.2.0.7, when running on HP Tru64 UNIX, has unknown ... | S | |
| CVE-2006-5350 | Unspecified vulnerability in Oracle HTTP Server 9.2.0.7 and Oracle E-Business Suite and Applications... | S | |
| CVE-2006-5351 | Multiple unspecified vulnerabilities in Oracle Application Express (formerly Oracle HTML DB) 1.5 up ... | S | |
| CVE-2006-5352 | Multiple unspecified vulnerabilities in Oracle Application Express 1.5 up to 1.6.1 have unknown impa... | S | |
| CVE-2006-5353 | Unspecified vulnerability in Oracle HTTP Server component in Oracle Application Server 9.0.4.3, 10.1... | S | |
| CVE-2006-5354 | Unspecified vulnerability in Oracle HTTP Server 9.2.0.7 and 10.1.0.5, Application Server 9.0.4.3, 10... | S | |
| CVE-2006-5355 | Unspecified vulnerability in Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 1... | S | |
| CVE-2006-5356 | Unspecified vulnerability in Oracle Containers for J2EE component in Oracle Application Server 9.0.4... | S | |
| CVE-2006-5357 | Unspecified vulnerability in Oracle HTTP Server component in Oracle Application Server 10.1.2.0.1, 1... | S | |
| CVE-2006-5358 | Unspecified vulnerability in Oracle Forms component in Oracle Application Server 9.0.4.3 and 10.1.2.... | S | |
| CVE-2006-5359 | Multiple unspecified vulnerabilities in Oracle Reports Developer component in Oracle Application Ser... | S | |
| CVE-2006-5360 | Unspecified vulnerability in Oracle Forms component in Oracle Application Server 9.0.4.2 has unknown... | S | |
| CVE-2006-5361 | Unspecified vulnerability in Oracle Containers for J2EE in Oracle Application Server 9.0.4.3, 10.1.2... | S | |
| CVE-2006-5362 | Unspecified vulnerability in Oracle Containers for J2EE component in Oracle Application Server 10.1.... | S | |
| CVE-2006-5363 | Unspecified vulnerability in Oracle Single Sign-On component in Oracle Application Server 10.1.2.0.1... | S | |
| CVE-2006-5364 | Unspecified vulnerability in Oracle Containers for J2EE component in Oracle Application Server 9.0.4... | S | |
| CVE-2006-5365 | Unspecified vulnerability in Oracle Forms in Oracle Application Server 9.0.4.3 and 10.1.2.0.2, and E... | S | |
| CVE-2006-5366 | Multiple unspecified vulnerabilities in Oracle Collaboration Suite 9.0.4.2 have unknown impact and r... | S | |
| CVE-2006-5367 | Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.7 up to 11.5.10CU2 have unknown... | S | |
| CVE-2006-5368 | Unspecified vulnerability in Oracle Exchange component in Oracle E-Business Suite 6.2.4 has unknown ... | S | |
| CVE-2006-5369 | Unspecified vulnerability in Oracle Application Object Library in Oracle E-Business Suite 11.5.10CU2... | S | |
| CVE-2006-5370 | Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10CU2 have unknown impact and r... | S | |
| CVE-2006-5371 | Unspecified vulnerability in Oracle Email Center component in Oracle E-Business Suite 11.5.9 has unk... | S | |
| CVE-2006-5372 | Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10 up to 11.5.10CU2 have unknow... | S | |
| CVE-2006-5373 | Unspecified vulnerability in Oracle Install Base component in Oracle E-Business Suite 11.5.10CU1 has... | S | |
| CVE-2006-5374 | Unspecified vulnerability in Oracle Pharmaceutical Applications 4.5.1 has unknown impact and remote ... | S | |
| CVE-2006-5375 | Multiple unspecified vulnerabilities in PeopleTools component in Oracle PeopleSoft Enterprise 8.46 G... | S | |
| CVE-2006-5376 | Multiple unspecified vulnerabilities in PeopleTools component in Oracle PeopleSoft Enterprise 8.22 G... | S | |
| CVE-2006-5377 | Unspecified vulnerability in PeopleSoft component in Oracle PeopleSoft Enterprise 8.80 GA, 8.90 GA, ... | S | |
| CVE-2006-5378 | Unspecified vulnerability in JD Edwards HTML Server in JD Edwards EnterpriseOne SP23_O2, 8.95.P1, an... | S | |
| CVE-2006-5379 | The accelerated rendering functionality of NVIDIA Binary Graphics Driver (binary blob driver) For Li... | E | |
| CVE-2006-5380 | Remote file inclusion vulnerability in Contenido CMS allows remote attackers to execute arbitrary PH... | E | |
| CVE-2006-5381 | Contenido CMS stores sensitive data under the web root with insufficient access control, which allow... | | |
| CVE-2006-5382 | 3Com Switch SS3 4400 switches, firmware 5.11, 6.00 and 6.10 and earlier, allow remote attackers to r... | | |
| CVE-2006-5383 | SQL injection vulnerability in comadd.php in Def-Blog 1.0.1 and earlier allows remote attackers to e... | E | |
| CVE-2006-5384 | PHP remote file inclusion vulnerability in modification/SendAlertEmail.php in CDS Software Consortiu... | E | |
| CVE-2006-5385 | PHP remote file inclusion vulnerability in admin/admin_spam.php in the SpamOborona 1.0b and earlier ... | E | |
| CVE-2006-5386 | PHP remote file inclusion vulnerability in process.php in NuralStorm Webmail 0.98b and earlier, when... | E | |
| CVE-2006-5387 | PHP remote file inclusion vulnerability in mods/iai/includes/constants.php in the PlusXL 20_272 and ... | E | |
| CVE-2006-5388 | SQL injection vulnerability in index.php in WebSPELL 4.01.01 and earlier allows remote attackers to ... | E | |
| CVE-2006-5389 | tools/tellhim.php in PHP-Wyana allows remote attackers to obtain sensitive information via an invali... | | |
| CVE-2006-5390 | PHP remote file inclusion vulnerability in includes/functions_mod_user.php in the ACP User Registrat... | E S | |
| CVE-2006-5391 | Xfire 1.64 and earlier allows remote attackers to cause a denial of service (client application cras... | E | |
| CVE-2006-5392 | Multiple PHP remote file inclusion vulnerabilities in OpenDock FullCore 4.4 and earlier allow remote... | E | |
| CVE-2006-5393 | Cisco Secure Desktop (CSD) does not require that the ClearPageFileAtShutdown (aka CCE-Winv2.0-407) r... | | |
| CVE-2006-5394 | The default configuration of Cisco Secure Desktop (CSD) has an unchecked "Disable printing" box in S... | | |
| CVE-2006-5395 | Buffer overflow in Microsoft Class Package Export Tool (aka clspack.exe) allows context-dependent at... | E | |
| CVE-2006-5396 | The tcp_fuse_rcv_drain function in the Sun Solaris 10 kernel before 20061017, when TCP Fusion is ena... | | |
| CVE-2006-5397 | The Xinput module (modules/im/ximcp/imLcIm.c) in X.Org libX11 1.0.2 and 1.0.3 opens a file for readi... | S | |
| CVE-2006-5398 | SQL injection vulnerability in comments.php in Simplog 0.9.3.1 allows remote attackers to execute ar... | E | |
| CVE-2006-5399 | PHP remote file inclusion vulnerability in classes/Import_MM.class.php in PHPRecipeBook 2.36, when r... | E S | |
| CVE-2006-5400 | PHP remote file inclusion vulnerability in forum/track.php in CyberBrau 0.9.4, when register_globals... | E | |
| CVE-2006-5401 | PHP remote file inclusion vulnerability in template/barnraiser_01/p_new_password.tpl.php in AROUNDMe... | E | |
| CVE-2006-5402 | Multiple PHP remote file inclusion vulnerabilities in PHPmybibli 3.0.1 and earlier allow remote atta... | E S | |
| CVE-2006-5403 | Stack-based buffer overflow in an ActiveX control used in Symantec Automated Support Assistant, as u... | | |
| CVE-2006-5404 | Unspecified vulnerability in an ActiveX control used in Symantec Automated Support Assistant, as use... | S | |
| CVE-2006-5405 | Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as ... | | |
| CVE-2006-5406 | Passgo Defender 5.2 creates the application directory with insecure permissions (Everyone/Full Contr... | | |
| CVE-2006-5407 | PHP remote file inclusion vulnerability in open_form.php in osTicket allows remote attackers to exec... | | |
| CVE-2006-5408 | Multiple cross-site scripting (XSS) vulnerabilities in the wireless IDS management interface for Hig... | | |
| CVE-2006-5409 | Multiple SQL injection vulnerabilities in the wireless IDS management interface for Highwall Enterpr... | | |
| CVE-2006-5410 | PHP remote file inclusion vulnerability in templates/tmpl_dfl/scripts/index.php in BoonEx Dolphin 5.... | E | |
| CVE-2006-5411 | Unrestricted file upload vulnerability in upload.php for Free Web Publishing System (FreeWPS), possi... | E | |
| CVE-2006-5412 | admin.php in PHP Outburst Easynews 4.4.1 and earlier, when register_globals is enabled, allows remot... | E | |
| CVE-2006-5413 | Multiple PHP remote file inclusion vulnerabilities in SuperMod 3.0.0 for YABB (YaBBSM) allow remote ... | E | |
| CVE-2006-5414 | Barry Nauta BRIM before 1.2.1 allows remote authenticated users to read information from other users... | S | |
| CVE-2006-5415 | PHP remote file inclusion vulnerability in includes/functions_newshr.php in the News Defilante Horiz... | E | |
| CVE-2006-5416 | Cross-site scripting (XSS) vulnerability in my.acctab.php3 in F5 Networks FirePass 1000 SSL VPN 5.5,... | S | |
| CVE-2006-5417 | McAfee Network Agent (mcnasvc.exe) 1.0.178.0, as used by multiple McAfee products possibly including... | | |
| CVE-2006-5418 | PHP remote file inclusion vulnerability in archive/archive_topic.php in pbpbb archive for search eng... | E | |
| CVE-2006-5419 | PHP remote file inclusion vulnerability in client.php in University of Glasgow Specimen Image Databa... | E | |
| CVE-2006-5420 | Kerio WinRoute Firewall 6.2.2 and earlier allows remote attackers to cause a denial of service (cras... | | |
| CVE-2006-5421 | WSN Forum 1.3.4 and earlier allows remote attackers to execute arbitrary PHP code via a modified pat... | E | |
| CVE-2006-5422 | PHP remote file inclusion vulnerability in calcul-page.php in Lodel (patchlodel) 0.7.3 allows remote... | | |
| CVE-2006-5423 | PHP remote file inclusion vulnerability in admin/admin_module.php in Lou Portail 1.4.1, and possibly... | | |
| CVE-2006-5424 | Unspecified vulnerability in Justsystem Ichitaro 2006, 2006 trial version, and Government 2006 allow... | | |
| CVE-2006-5425 | XORP (eXtensible Open Router Platform) 1.2 and 1.3 allows remote attackers to cause a denial of serv... | S | |
| CVE-2006-5426 | PHP remote file inclusion vulnerability in lib/lcUser.php in LoCal Calendar System 1.1 remote attack... | E | |
| CVE-2006-5427 | PHP remote file inclusion vulnerability in plugins/main.php in Php AMX 0.9.0, when register_globals ... | E | |
| CVE-2006-5428 | rpc.php in Cerberus Helpdesk 3.2.1 does not verify a client's privileges for a display_get_requester... | | |
| CVE-2006-5429 | Multiple PHP remote file inclusion vulnerabilities in Barry Nauta BRIM 1.2.1 and earlier allow remot... | E | |
| CVE-2006-5430 | Cross-site scripting (XSS) vulnerability in the search functionality in db-central (dbc) Enterprise ... | | |
| CVE-2006-5431 | PHP remote file inclusion vulnerability in gorum/dbproperty.php in PHPOutsourcing Zorum 3.5 and earl... | | |
| CVE-2006-5432 | Multiple direct static code injection vulnerabilities in db/txt.inc.php in phpPowerCards 2.10, when ... | E | |
| CVE-2006-5433 | PHP remote file inclusion vulnerability in modules/guestbook/index.php in ALiCE-CMS 0.1 allows remot... | E | |
| CVE-2006-5434 | PHP remote file inclusion vulnerability in p-news.php in P-News 1.16 and 1.17 allows remote attacker... | E | |
| CVE-2006-5435 | PHP remote file inclusion vulnerability in groupcp.php in phpBB 2.0.10 and earlier allows remote att... | | |
| CVE-2006-5436 | PHP remote file inclusion vulnerability in index.php in FreeFAQ 1.0.e allows remote attackers to exe... | | |
| CVE-2006-5437 | Directory traversal vulnerability in upgrade.php in phpAdsNew 2.0.8 allows remote attackers to read ... | | |
| CVE-2006-5438 | PHP remote file inclusion vulnerability in adminfoot.php in Comdev Forum 4.1, when register_globals ... | | |
| CVE-2006-5439 | PHP remote file inclusion vulnerability in adminfoot.php in Comdev Misc Tools 4.1, when register_glo... | | |
| CVE-2006-5440 | PHP remote file inclusion vulnerability in adminfoot.php in Comdev Form Designer 4.1, when register_... | | |
| CVE-2006-5441 | PHP remote file inclusion vulnerability in adminfoot.php in Comdev Web Blogger 4.1, when register_gl... | | |
| CVE-2006-5442 | ViewVC 1.0.2 and earlier does not specify a charset in its HTTP headers or HTML documents, which all... | | |
| CVE-2006-5443 | Unspecified vulnerability in XIAO Gang WWW Interactive Mathematics Server (WIMS) before 3.60 allows ... | S | |
| CVE-2006-5444 | Integer overflow in the get_input function in the Skinny channel driver (chan_skinny.c) in Asterisk ... | E S | |
| CVE-2006-5445 | Unspecified vulnerability in the SIP channel driver (channels/chan_sip.c) in Asterisk 1.2.x before 1... | S | |
| CVE-2006-5446 | SQL injection vulnerability in lobby/config.php in Casinosoft Casino Script (aka Masvet) 3.2 allows ... | E | |
| CVE-2006-5447 | Cross-site scripting (XSS) vulnerability in index.php in DEV Web Management System (WMS) 1.5 allows ... | E | |
| CVE-2006-5448 | The drmstor.dll ActiveX object in Microsoft Windows Digital Rights Management System (DRM) allows re... | | |
| CVE-2006-5449 | procmail in Ingo H3 before 1.1.2 Horde module allows remote authenticated users to execute arbitrary... | S | |
| CVE-2006-5450 | SQL injection vulnerability in index.asp in Kinesis Interactive Cinema System (KICS) CMS allows remo... | E | |
| CVE-2006-5451 | Multiple cross-site scripting (XSS) vulnerabilities in TorrentFlux 2.1 allow remote attackers to inj... | E | |
| CVE-2006-5452 | Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX B.11.00 through B.11.23 allow... | S | |
| CVE-2006-5453 | Multiple cross-site scripting (XSS) vulnerabilities in Bugzilla 2.18.x before 2.18.6, 2.20.x before ... | S | |
| CVE-2006-5454 | Bugzilla 2.18.x before 2.18.6, 2.20.x before 2.20.3, 2.22.x before 2.22.1, and 2.23.x before 2.23.3 ... | S | |
| CVE-2006-5455 | Cross-site request forgery (CSRF) vulnerability in editversions.cgi in Bugzilla before 2.22.1 and 2.... | S | |
| CVE-2006-5456 | Multiple buffer overflows in GraphicsMagick before 1.1.7 and ImageMagick 6.0.7 allow user-assisted a... | S | |
| CVE-2006-5457 | Multiple cross-site scripting (XSS) vulnerabilities in the registration form in Casinosoft Casino Sc... | E | |
| CVE-2006-5458 | PHP remote file inclusion vulnerability in common.php in Hinton Design phpht Topsites allows remote ... | E | |
| CVE-2006-5459 | Multiple PHP remote file inclusion vulnerabilities in Download-Engine 1.4.2 and earlier allow remote... | | |
| CVE-2006-5460 | Multiple PHP remote file inclusion vulnerabilities in Hinton Design phpht Topsites allow remote atta... | | |
| CVE-2006-5461 | Avahi before 0.6.15 does not verify the sender identity of netlink messages to ensure that they come... | S | |
| CVE-2006-5462 | Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.... | S | |
| CVE-2006-5463 | Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonk... | S | |
| CVE-2006-5464 | Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunder... | S | |
| CVE-2006-5465 | Buffer overflow in PHP before 5.2.0 allows remote attackers to execute arbitrary code via crafted UT... | | |
| CVE-2006-5466 | Heap-based buffer overflow in the showQueryPackage function in librpm in RPM Package Manager 4.4.8, ... | E S | |
| CVE-2006-5467 | The cgi.rb CGI library for Ruby 1.8 allows remote attackers to cause a denial of service (infinite l... | S | |
| CVE-2006-5468 | Unspecified vulnerability in the HTTP dissector in Wireshark (formerly Ethereal) 0.99.3 allows remot... | | |
| CVE-2006-5469 | Unspecified vulnerability in the WBXML dissector in Wireshark (formerly Ethereal) 0.10.11 through 0.... | S | |
| CVE-2006-5470 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-5740. Reason: This candida... | R | |
| CVE-2006-5471 | PHP remote file inclusion vulnerability in example/lib/grid3.lib.php in Softerra PHP Developer Libra... | E | |
| CVE-2006-5472 | PHP remote file inclusion vulnerability in Softerra PHP Developer Library 1.5.3 and earlier allows r... | E | |
| CVE-2006-5473 | PHP remote file inclusion vulnerability in Description.php in Softerra PHP Developer Library 1.5.3 a... | | |
| CVE-2006-5474 | The "forgot password" function in OneOrZero Helpdesk before 1.6.5.4 generates insecure passwords by ... | E S | |
| CVE-2006-5475 | Multiple cross-site scripting (XSS) vulnerabilities in the XML parser in Drupal 4.6.x before 4.6.10 ... | S | |
| CVE-2006-5476 | Cross-site request forgery (CSRF) vulnerability in Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4... | | |
| CVE-2006-5477 | Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4 allows form submissions to be redirected, which al... | S | |
| CVE-2006-5478 | Multiple stack-based buffer overflows in Novell eDirectory 8.8.x before 8.8.1 FTF1, and 8.x up to 8.... | S | |
| CVE-2006-5479 | The NCP Engine in Novell eDirectory before 8.7.3.8 FTF1 allows remote attackers to cause an unspecif... | S | |
| CVE-2006-5480 | PHP remote file inclusion vulnerability in lib/rs.php in 2le.net Castor PHP Web Builder 1.1.1 allows... | E | |
| CVE-2006-5481 | Multiple PHP remote file inclusion vulnerabilities in 2le.net Castor PHP Web Builder 1.1.1 allow rem... | | |
| CVE-2006-5482 | ufs_vnops.c in FreeBSD 6.1 allows local users to cause an unspecified denial of service by calling t... | | |
| CVE-2006-5483 | p1003_1b.c in FreeBSD 6.1 allows local users to cause an unspecified denial of service by setting a ... | | |
| CVE-2006-5484 | SSH Tectia Client/Server/Connector 5.1.0 and earlier, Manager 2.2.0 and earlier, and other products,... | S | |
| CVE-2006-5485 | Multiple PHP remote file inclusion vulnerabilities in SpeedBerg 1.2beta1 allow remote attackers to e... | | |
| CVE-2006-5486 | Cross-site scripting (XSS) vulnerability in Webmail in Sun Java System Messaging Server 6.0 through ... | S | |
| CVE-2006-5487 | Directory traversal vulnerability in Marshal MailMarshal SMTP 5.x, 6.x, and 2006, and MailMarshal fo... | S | |
| CVE-2006-5488 | SQL injection vulnerability in XchangeBoard 1.70, and possibly earlier, when magic_quotes_gpc is dis... | | |
| CVE-2006-5489 | Research in Motion (RIM) BlackBerry Enterprise Server 4.1 SP2 before Hotfix 1 for IBM Lotus Domino m... | S | |
| CVE-2006-5490 | Multiple SQL injection vulnerabilities in Segue Content Management System (CMS) before 1.5.8 allow r... | S | |
| CVE-2006-5491 | Multiple SQL injection vulnerabilities in include/index.php in UltraCMS 0.9 allow remote attackers t... | | |
| CVE-2006-5492 | Unspecified vulnerability in Maerys Archive (Maarch) before 2.0.1 allows remote authenticated users ... | | |
| CVE-2006-5493 | PHP remote file inclusion vulnerability in template/purpletech/base_include.php in DigitalHive 2.0 R... | E | |
| CVE-2006-5494 | Multiple PHP remote file inclusion vulnerabilities in modules/My_eGallery/public/displayCategory.php... | E | |
| CVE-2006-5495 | Multiple PHP remote file inclusion vulnerabilities in Trawler Web CMS 1.8.1 and earlier allow remote... | E | |
| CVE-2006-5496 | Multiple cross-site scripting (XSS) vulnerabilities in Timothy Claason KnowledgeBank 1.01 allow remo... | | |
| CVE-2006-5497 | PHP remote file inclusion vulnerability in themes/program/themesettings.inc.php in Segue CMS 1.5.8 a... | E | |
| CVE-2006-5498 | Directory traversal vulnerability in themes/program/themesettings.inc.php in Segue CMS 1.5.8 and ear... | | |
| CVE-2006-5499 | Multiple cross-site scripting (XSS) vulnerabilities in Serendipity (s9y) 1.0.1 and earlier allow rem... | S | |
| CVE-2006-5500 | Multiple SQL injection vulnerabilities in the checkUser function in inc/DBInterface.php in XchangeBo... | | |
| CVE-2006-5501 | Buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America... | S | |
| CVE-2006-5502 | Heap-based buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0... | S | |
| CVE-2006-5503 | Cross-site scripting (XSS) vulnerability in index.php in Simple Machines Forum (SMF) 1.1 RC2 allows ... | E | |
| CVE-2006-5504 | Cross-site scripting (XSS) vulnerability in index.php in Simple Machines Forum (SMF) allows remote a... | | |
| CVE-2006-5505 | Multiple PHP file inclusion vulnerabilities in 2BGal 3.0 allow remote attackers to execute arbitrary... | | |
| CVE-2006-5506 | Multiple PHP remote file inclusion vulnerabilities in WiClear 0.10 allow remote attackers to execute... | E | |
| CVE-2006-5507 | Multiple PHP remote file inclusion vulnerabilities in Der Dirigent (DeDi) 1.0.3 allow remote attacke... | | |
| CVE-2006-5508 | Multiple SQL injection vulnerabilities in addentry.php in WoltLab Burning Book 1.1.2 allow remote at... | | |
| CVE-2006-5509 | Eval injection vulnerability in addentry.php in WoltLab Burning Book 1.1.2 allows remote attackers t... | | |
| CVE-2006-5510 | Directory traversal vulnerability in explorer_load_lang.php in PH Pexplorer 0.24 allows remote attac... | E | |
| CVE-2006-5511 | Direct static code injection vulnerability in delete.php in JaxUltraBB (JUBB) 2.0, when register_glo... | E | |
| CVE-2006-5512 | Cross-site scripting (XSS) vulnerability in article.htm in Zwahlen Online Shop allows remote attacke... | | |
| CVE-2006-5513 | SQL injection vulnerability in GeoNetwork opensource before 2.0.3 allows remote attackers to execute... | | |
| CVE-2006-5514 | SQL injection vulnerability in quiz.php in Web Group Communication Center (WGCC) 0.5.6b and earlier ... | E | |
| CVE-2006-5515 | Cross-site scripting (XSS) vulnerability in lib-history.inc.php in phpAdsNew and phpPgAds before 2.0... | | |
| CVE-2006-5516 | Multiple cross-site scripting (XSS) vulnerabilities in actions/usersettings.php in WikiNi before 0.4... | E S | |
| CVE-2006-5517 | Multiple PHP remote file inclusion vulnerabilities in Rhode Island Open Meetings Filing Application ... | E | |
| CVE-2006-5518 | Multiple PHP remote file inclusion vulnerabilities in Christopher Fowler (Rhode Island) RSSonate all... | E | |
| CVE-2006-5519 | PHP remote file inclusion vulnerability in Savant2/Savant2_Plugin_options.php in the MambWeather 1.8... | E | |
| CVE-2006-5520 | PHP remote file inclusion vulnerability in functions.php in DeltaScripts PHP Classifieds 7.1 allows ... | | |
| CVE-2006-5521 | PHP remote file inclusion vulnerability in DNS/RR.php in Net_DNS 0.03 and earlier allows remote atta... | E | |
| CVE-2006-5522 | Multiple PHP remote file inclusion vulnerabilities in Johannes Erdfelt Kawf 1.0 and earlier allow re... | E | |
| CVE-2006-5523 | PHP remote file inclusion vulnerability in common.php in EZ-Ticket 0.0.1 allows remote attackers to ... | E | |
| CVE-2006-5524 | Cross-site scripting (XSS) vulnerability in index.php in phplist 2.10.2 allows remote attackers to i... | E | |
| CVE-2006-5525 | Incomplete blacklist vulnerability in mainfile.php in PHP-Nuke 7.9 and earlier allows remote attacke... | E | |
| CVE-2006-5526 | Multiple PHP remote file inclusion vulnerabilities in Teake Nutma Foing, as modified in Fully Modded... | E | |
| CVE-2006-5527 | PHP remote file inclusion vulnerability in lib.editor.inc.php in Intelimen InteliEditor 1.2.x allows... | E | |
| CVE-2006-5528 | Directory traversal vulnerability in mod.php in SchoolAlumni Portal 2.26 allows remote attackers to ... | E | |
| CVE-2006-5529 | Cross-site scripting (XSS) vulnerability in smumdadotcom_ascyb_alumni/mod.php in SchoolAlumni Portal... | E | |
| CVE-2006-5530 | Multiple cross-site scripting (XSS) vulnerabilities in Boesch SimpNews before 2.34.01 allow remote a... | E S | |
| CVE-2006-5531 | PHP remote file inclusion vulnerability in embedded.php in Ascended Guestbook 1.0.0 and earlier allo... | E | |
| CVE-2006-5532 | Cross-site scripting (XSS) vulnerability in rmgs/images.php in RMSOFT Gallery System 2.0 allows remo... | E | |
| CVE-2006-5533 | Multiple PHP remote file inclusion vulnerabilities in AROUNDMe 0.6.9, and possibly earlier, when reg... | E | |
| CVE-2006-5534 | Multiple cross-site scripting (XSS) vulnerabilities in index.htm in Zwahlen Online Shop Freeware 5.2... | | |
| CVE-2006-5535 | Multiple cross-site scripting (XSS) vulnerabilities in WebHostManager (WHM) 10.8.0 cPanel 10.9.0 R50... | E S | |
| CVE-2006-5536 | Directory traversal vulnerability in cgi-bin/webcm in D-Link DSL-G624T firmware 3.00B01T01.YA-C.2006... | E | |
| CVE-2006-5537 | Multiple cross-site scripting (XSS) vulnerabilities in cgi-bin/webcm in D-Link DSL-G624T firmware 3.... | E | |
| CVE-2006-5538 | D-Link DSL-G624T firmware 3.00B01T01.YA-C.20060616 allows remote attackers to list contents of the c... | E | |
| CVE-2006-5539 | PHP remote file inclusion vulnerability in login/secure.php in UeberProject Management System 1.0 an... | E | |
| CVE-2006-5540 | backend/parser/analyze.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause... | S | |
| CVE-2006-5541 | backend/parser/parse_coerce.c in PostgreSQL 7.4.1 through 7.4.14, 8.0.x before 8.0.9, and 8.1.x befo... | S | |
| CVE-2006-5542 | backend/tcop/postgres.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause ... | S | |
| CVE-2006-5543 | PHP remote file inclusion vulnerability in misc/function.php3 in PHP Generator of Object SQL Databas... | E | |
| CVE-2006-5544 | Visual truncation vulnerability in Microsoft Internet Explorer 7 allows remote attackers to spoof th... | E | |
| CVE-2006-5545 | Premium Antispam in Symantec Mail Security for Domino Server 5.1.x before 5.1.2.28 does not filter c... | S | |
| CVE-2006-5546 | PHP remote file inclusion vulnerability in OTSCMS/OTSCMS.php in Open Tibia Server Content Management... | E S | |
| CVE-2006-5547 | PHP remote file inclusion vulnerability in OTSCMS/OTSCMS.php in Open Tibia Server Content Management... | E S | |
| CVE-2006-5548 | PHP remote file inclusion vulnerability in OTSCMS/OTSCMS.php in Open Tibia Server Content Management... | E S | |
| CVE-2006-5549 | PHP remote file inclusion vulnerability in libraries/amfphp/amf-core/custom/CachedGateway.php in Ado... | | |
| CVE-2006-5550 | The kernel in FreeBSD 6.1 and OpenBSD 4.0 allows local users to cause a denial of service via unspec... | E | |
| CVE-2006-5551 | Stack-based buffer overflow in QK SMTP 3.01 and earlier might allow remote attackers to execute arbi... | E | |
| CVE-2006-5552 | Multiple heap-based buffer overflows in RevilloC MailServer 1.21 and earlier allow remote attackers ... | E | |
| CVE-2006-5553 | Cisco Security Agent (CSA) for Linux 4.5 before 4.5.1.657 and 5.0 before 5.0.0.193, as used by Unifi... | S | |
| CVE-2006-5554 | Directory traversal vulnerability in index.php in Imageview 5 allows remote attackers to read or exe... | E | |
| CVE-2006-5555 | PHP remote file inclusion vulnerability in constantes.inc.php in EPNadmin 0.7 and 0.7.1 allows remot... | E | |
| CVE-2006-5556 | Buffer overflow in the localtime_r function, and certain other functions, in libc in HP-UX B.11.11 a... | E S | |
| CVE-2006-5557 | Stack-based buffer overflow in the (1) swpackage and (2) swmodify commands in HP-UX B.11.11 and poss... | E S | |
| CVE-2006-5558 | Format string vulnerability in the swask command in HP-UX B.11.11 and possibly other versions allows... | E S | |
| CVE-2006-5559 | The Execute method in the ADODB.Connection 2.7 and 2.8 ActiveX control objects (ADODB.Connection.2.7... | E S | |
| CVE-2006-5560 | Cross-site scripting (XSS) vulnerability in heading.php in Boesch ProgSys 0.151 and earlier allows r... | S | |
| CVE-2006-5561 | SQL injection vulnerability in admincp.php in Discuz! GBK 5.0.0 allows remote attackers to execute a... | E | |
| CVE-2006-5562 | PHP remote file inclusion vulnerability in include/database.php in SourceForge (aka alexandria) 1.0.... | E | |
| CVE-2006-5563 | Unspecified vulnerability in Yahoo! Messenger (Service 18) before 8.1.0.195 allows remote attackers ... | S | |
| CVE-2006-5564 | Cross-site scripting (XSS) vulnerability in user.php in MAXdev MD-Pro 1.0.76 allows remote attackers... | E | |
| CVE-2006-5565 | CRLF injection vulnerability in MAXdev MD-Pro 1.0.76 allows remote attackers to inject arbitrary HTT... | E | |
| CVE-2006-5566 | CRLF injection vulnerability in premium/index.php in Shop-Script allows remote attackers to inject a... | | |
| CVE-2006-5567 | Multiple heap-based buffer overflows in AOL Nullsoft WinAmp before 5.31 allow user-assisted remote a... | S | |
| CVE-2006-5568 | FtpXQ Server 3.0.1 allows remote attackers to cause a denial of service (CPU exhaustion) via a long ... | E | |
| CVE-2006-5569 | FtpXQ Server 3.0.1 installs with two default testing accounts, which allows remote attackers to read... | E | |
| CVE-2006-5570 | Directory traversal vulnerability in /scripts/cruise/cws.exe in CruiseWorks 1.09c and 1.09d allows r... | | |
| CVE-2006-5571 | Stack-based buffer overflow in /scripts/cruise/cws.exe in CruiseWorks 1.09c and 1.09d allows remote ... | E S | |
| CVE-2006-5572 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5573 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5574 | Unspecified vulnerability in the Brazilian Portuguese Grammar Checker in Microsoft Office 2003 and t... | | |
| CVE-2006-5575 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5576 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5577 | Microsoft Internet Explorer 6 and earlier allows remote attackers to obtain sensitive information vi... | | |
| CVE-2006-5578 | Microsoft Internet Explorer 6 and earlier allows remote attackers to read Temporary Internet Files (... | | |
| CVE-2006-5579 | Microsoft Internet Explorer 6 allows remote attackers to execute arbitrary code by using JavaScript ... | | |
| CVE-2006-5581 | Unspecified vulnerability in Microsoft Internet Explorer 6 allows remote attackers to execute arbitr... | | |
| CVE-2006-5582 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5583 | Buffer overflow in the SNMP Service in Microsoft Windows 2000 SP4, XP SP2, Server 2003, Server 2003 ... | | |
| CVE-2006-5584 | The Remote Installation Service (RIS) in Microsoft Windows 2000 SP4 uses a TFTP server that allows a... | | |
| CVE-2006-5585 | The Client-Server Run-time Subsystem in Microsoft Windows XP SP2 and Server 2003 allows local users ... | S | |
| CVE-2006-5586 | The Graphics Rendering Engine in Microsoft Windows 2000 SP4 and XP SP2 allows local users to gain pr... | | |
| CVE-2006-5587 | Multiple PHP remote file inclusion vulnerabilities in MDweb 1.3 and earlier (Mdweb132-postgres) allo... | E | |
| CVE-2006-5588 | Multiple PHP remote file inclusion vulnerabilities in CMS Faethon 2.0 Ultimate and earlier, when reg... | E | |
| CVE-2006-5589 | Multiple SQL injection vulnerabilities in LedgerSMB (LSMB) 1.1.0 and earlier allow remote attackers ... | | |
| CVE-2006-5590 | PHP remote file inclusion vulnerability in index.php in ArticleBeach Script 2.0 and earlier allows r... | E | |
| CVE-2006-5591 | Multiple SQL injection vulnerabilities in Admin/check.asp in PacPoll 4.0 and earlier allow remote at... | E | |
| CVE-2006-5592 | Admin/adpoll.asp in PacPoll 4.0 and earlier allows remote attackers to bypass authentication by sett... | | |
| CVE-2006-5593 | Buffer overflow in Desknet's (niokeru) before 5.0J R1.0 might allow remote authenticated users to ex... | S | |
| CVE-2006-5594 | PHP remote file inclusion vulnerability in University of British Columbia iPeer 2.0, and possibly ea... | | |
| CVE-2006-5595 | Unspecified vulnerability in the AirPcap support in Wireshark (formerly Ethereal) 0.99.3 has unspeci... | | |
| CVE-2006-5596 | Directory traversal vulnerability in the SSL server in AEP Smartgate 4.3b allows remote attackers to... | E | |
| CVE-2006-5597 | join.asp in MiniHTTP Web Forum & File Server PowerPack 4.0 allows remote attackers to add or modify ... | E | |
| CVE-2006-5598 | Cross-site scripting (XSS) vulnerability in index.php for GOOP Gallery 2.0, and possibly other versi... | E S | |
| CVE-2006-5599 | Cross-site scripting (XSS) vulnerability in Oracle Application Express (formerly HTML DB) before 2.2... | S | |
| CVE-2006-5600 | Axalto Protiva 1.1, possibly only non-commercial versions, stores passwords in plaintext in files wi... | | |
| CVE-2006-5601 | Stack-based buffer overflow in the eap_do_notify function in eap.c in xsupplicant before 1.2.6, and ... | S | |
| CVE-2006-5602 | Multiple memory leaks in xsupplicant before 1.2.6, and possibly other versions, allow attackers to c... | S | |
| CVE-2006-5603 | SQL injection vulnerability in pop_mail.asp in Snitz Forums 2000 3.4.06 allows remote attackers to e... | E | |
| CVE-2006-5604 | Directory traversal vulnerability in phpcards.header.php in phpCards 1.3 allows remote attackers to ... | E | |
| CVE-2006-5605 | Multiple cross-site scripting (XSS) vulnerabilities in phpcards.footer.php in phpCards 1.3 allow rem... | | |
| CVE-2006-5606 | Multiple SQL injection vulnerabilities in BytesFall Explorer (bfExplorer) 0.0.7.1 and earlier allow ... | E | |
| CVE-2006-5607 | Directory traversal vulnerability in /cgi-bin/webcm in INCA IM-204 allows remote attackers to read a... | E | |
| CVE-2006-5608 | SQL injection vulnerability in Extended Tracker (xtracker) 4.7 before 1.5.2.1 for Drupal allows remo... | E S | |
| CVE-2006-5609 | Directory traversal vulnerability in dir.php in TorrentFlux 2.1 allows remote attackers to list arbi... | | |
| CVE-2006-5610 | PHP remote file inclusion vulnerability in player/includes/common.php in Teake Nutma Foing, as modif... | | |
| CVE-2006-5611 | Unspecified vulnerability in Toshiba Bluetooth Stack before 4.20.01 has unspecified impact and attac... | | |
| CVE-2006-5612 | PHP remote file inclusion vulnerability in aide.php3 (aka aide.php) in GestArt beta 1, when register... | E | |
| CVE-2006-5613 | PHP remote file inclusion in Core/core.inc.php in MP3 Streaming DownSampler (mp3SDS) 3.0, when regis... | E | |
| CVE-2006-5614 | Microsoft Windows NAT Helper Components (ipnathlp.dll) on Windows XP SP2, when Internet Connection S... | E | |
| CVE-2006-5615 | PHP remote file inclusion vulnerability in publish.php in Textpattern 1.19, when register_globals is... | E S | |
| CVE-2006-5616 | Multiple unspecified vulnerabilities in OpenPBS, as used in SUSE Linux 9.2 through 10.1, allow attac... | | |
| CVE-2006-5617 | Directory traversal vulnerability in index.php in Thepeak File Upload Manager 1.3 allows remote atta... | E | |
| CVE-2006-5618 | Directory traversal vulnerability in script/cat_for_aff.php in Netref 4 allows remote attackers to r... | E | |
| CVE-2006-5619 | The seqfile handling (ip6fl_get_n function in ip6_flowlabel.c) in Linux kernel 2.6 up to 2.6.18-stab... | | |
| CVE-2006-5620 | PHP remote file inclusion vulnerability in include/menu_builder.php in MiniBILL 2006-10-10 (1.2.3) a... | E | |
| CVE-2006-5621 | PHP remote file inclusion vulnerability in end.php in ask_rave 0.9 PR, and other versions before 0.9... | E S | |
| CVE-2006-5622 | SQL injection vulnerability in picmgr.php in Coppermine Photo Gallery 1.4.9 allows remote attackers ... | E S | |
| CVE-2006-5623 | PHP remote file inclusion vulnerability in ip.inc.php in Electronic Engineering Tool (EE Tool) 0.4-1... | E | |
| CVE-2006-5624 | Multiple PHP remote file inclusion vulnerabilities in Multi-Page Comment System (MPCS) 1.0.0 and ear... | E S | |
| CVE-2006-5625 | PHP remote file inclusion vulnerability in wwwdev/nxheader.inc.php in N/X 2002 Professional Edition ... | E | |
| CVE-2006-5626 | Cross-site scripting (XSS) vulnerability in cms_images/js/htmlarea/htmlarea.php in phpFaber Content ... | E S | |
| CVE-2006-5627 | Multiple PHP remote file inclusion vulnerabilities in QnECMS 2.5.6 and earlier allow remote attacker... | E | |
| CVE-2006-5628 | SQL injection vulnerability in login.asp in UNISOR Content Management System (CMS) allows remote att... | | |
| CVE-2006-5629 | Multiple SQL injection vulnerabilities in Hosting Controller 6.1 before Hotfix 3.3 allow remote atta... | E S | |
| CVE-2006-5630 | Hosting Controller 6.1 before Hotfix 3.3 allows remote attackers to (1) delete the virtual directory... | E S | |
| CVE-2006-5631 | Cross-site scripting (XSS) vulnerability in change_pass.php in iG Shop 1.4 allows remote attackers t... | E | |
| CVE-2006-5632 | Cross-site scripting (XSS) vulnerability in change_pass.php in iG Shop 1.4 allows remote attackers t... | E | |
| CVE-2006-5633 | Firefox 1.5.0.7 and 2.0, and Seamonkey 1.1b, allows remote attackers to cause a denial of service (c... | E | |
| CVE-2006-5634 | Multiple PHP remote file inclusion vulnerabilities in phpProfiles 2.1 Beta allow remote attackers to... | E | |
| CVE-2006-5635 | SQL injection vulnerability in forum/search.asp in Web Wiz Forums allows remote attackers to execute... | E | |
| CVE-2006-5636 | PHP remote file inclusion vulnerability in common.php in Simple Website Software (SWS) 0.99 and earl... | E | |
| CVE-2006-5637 | PHP remote file inclusion vulnerability in faq_reply.php in Faq Administrator 2.1b allows remote att... | E S | |
| CVE-2006-5638 | Multiple SQL injection vulnerabilities in cherche.php in PHPMyRing 4.2.1 and earlier allow remote at... | E | |
| CVE-2006-5639 | Unspecified vulnerability in the random number generator in OpenWBEM (Web Based Enterprise Managemen... | S | |
| CVE-2006-5640 | SQL injection vulnerability in guestbookview.asp in Techno Dreams Guest Book 1.0 earlier allows remo... | E | |
| CVE-2006-5641 | SQL injection vulnerability in MainAnnounce2.asp in Techno Dreams Announcement allows remote attacke... | E | |
| CVE-2006-5642 | Unspecified vulnerability in NmnLogger 1.0.0 and earlier has unknown impact and attack vectors relat... | S | |
| CVE-2006-5643 | Cross-site scripting (XSS) vulnerability in search_de.html in foresite CMS allows remote attackers t... | E | |
| CVE-2006-5645 | Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other ... | | |
| CVE-2006-5646 | Heap-based buffer overflow in Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for L... | | |
| CVE-2006-5647 | Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other ... | | |
| CVE-2006-5648 | Ubuntu Linux 6.10 for the PowerPC (PPC) allows local users to cause a denial of service (resource co... | S | |
| CVE-2006-5649 | Unspecified vulnerability in the "alignment check exception handling" in Ubuntu 5.10, 6.06 LTS, and ... | S | |
| CVE-2006-5650 | The ICQPhone.SipxPhoneManager ActiveX control in America Online ICQ 5.1 allows remote attackers to d... | | |
| CVE-2006-5651 | list.php in DigiOz Guestbook before 1.7.1 allows remote attackers to obtain sensitive information vi... | E S | |
| CVE-2006-5652 | Cross-site scripting (XSS) vulnerability in Sun iPlanet Messaging Server Messenger Express allows re... | E | |
| CVE-2006-5653 | Cross-site scripting (XSS) vulnerability in the errorHTML function in the index script in Sun Java S... | E | |
| CVE-2006-5654 | Unspecified vulnerability in the Network Security Services (NSS) in Sun Java System Web Server 6.0 b... | | |
| CVE-2006-5655 | SQL injection vulnerability in index.php in OpenDocMan 1.2p3 allows remote attackers to execute arbi... | | |
| CVE-2006-5656 | Memory leak in the push_align function in src/util.c in Vilistextum before 2.6.9 allows remote attac... | S | |
| CVE-2006-5657 | Multiple off-by-one errors in src/text.c in Vilistextum before 2.6.9 have unknown impact and attack ... | S | |
| CVE-2006-5658 | BlooMooWeb ActiveX control (AidemATL.dll) allows remote attackers to (1) download arbitrary files vi... | | |
| CVE-2006-5659 | PAM_extern before 0.2 sends a password as a command line argument, which allows local users to obtai... | | |
| CVE-2006-5660 | Cisco Security Agent Management Center (CSAMC) 5.1 before 5.1.0.79 does not properly handle certain ... | S | |
| CVE-2006-5661 | Cross-site scripting (XSS) vulnerability in nquser.php in VIRtech Netquery allows remote attackers t... | E | |
| CVE-2006-5662 | SQL injection vulnerability in easy notesManager (eNM) 0.0.1 allows remote attackers to execute arbi... | E | |
| CVE-2006-5663 | IBM Informix Dynamic Server 10.00, Informix Client Software Development Kit (CSDK) 2.90, and Informi... | S | |
| CVE-2006-5664 | The installation script in IBM Informix Dynamic Server 10.00, Informix Client Software Development K... | | |
| CVE-2006-5665 | PHP remote file inclusion vulnerability in admin/modules_data.php in the phpBB module Spider Friendl... | E | |
| CVE-2006-5666 | SQL injection vulnerability in includes/menu.inc.php in E-Annu 1.0 allows remote attackers to execut... | E | |
| CVE-2006-5667 | Multiple PHP remote file inclusion vulnerabilities in P-Book 1.17 and earlier allow remote attackers... | E | |
| CVE-2006-5668 | Unspecified vulnerability in Ampache 3.3.2 and earlier, when register_globals is enabled, allows rem... | S | |
| CVE-2006-5669 | PHP remote file inclusion vulnerability in gestion/savebackup.php in Gepi 1.4.0 and earlier, and pos... | E S | |
| CVE-2006-5670 | PHP remote file inclusion vulnerability in forgot_pass.php in Free Image Hosting 1.0 and earlier all... | E | |
| CVE-2006-5671 | PHP remote file inclusion vulnerability in contact.php in Free Image Hosting 1.0 and earlier allows ... | | |
| CVE-2006-5672 | PHP remote file inclusion vulnerability in web/init_mysource.php in MySource CMS 2.16.2 and earlier ... | E | |
| CVE-2006-5673 | PHP remote file inclusion vulnerability in bb_func_txt.php in miniBB 2.0.2 and earlier, when registe... | E S | |
| CVE-2006-5674 | Multiple PHP remote file inclusion vulnerabilities in miniBB 2.0.2 and earlier, when register_global... | | |
| CVE-2006-5675 | Multiple unspecified vulnerabilities in Pentaho Business Intelligence (BI) Suite before 1.2 RC3 (1.2... | S | |
| CVE-2006-5676 | SQL injection vulnerability in consult/classement.php in Uni-Vert PhpLeague 0.82 and earlier allows ... | E | |
| CVE-2006-5677 | resmom/start_exec.c in pbs_mom in TORQUE Resource Manager 2.0.0p8 and earlier allows local users to ... | S | |
| CVE-2006-5678 | PHP remote file inclusion vulnerability in common/visiteurs/include/library.inc.php in J-Pierre DEZE... | E | |
| CVE-2006-5679 | Integer overflow in the ffs_mountfs function in FreeBSD 6.1 allows local users to cause a denial of ... | | |
| CVE-2006-5680 | The libarchive library in FreeBSD 6-STABLE after 2006-09-05 and before 2006-11-08 allows context-dep... | E | |
| CVE-2006-5681 | QuickTime for Java on Mac OS X 10.4 through 10.4.8, when used with Quartz Composer, allows remote at... | S | |
| CVE-2006-5682 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5683 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5684 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5685 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5686 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5687 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5688 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5689 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5690 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5691 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5692 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5693 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5694 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5695 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5696 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5697 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5698 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5699 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5700 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5701 | Double free vulnerability in squashfs module in the Linux kernel 2.6.x, as used in Fedora Core 5 and... | E | |
| CVE-2006-5702 | Tikiwiki 1.9.5 allows remote attackers to obtain sensitive information (MySQL username and password)... | E | |
| CVE-2006-5703 | Cross-site scripting (XSS) vulnerability in tiki-featured_link.php in Tikiwiki 1.9.5 allows remote a... | E | |
| CVE-2006-5704 | HP NonStop Server G06.29, when running Standard Security T6533G06 before T6533G06^ABK, does not prop... | | |
| CVE-2006-5705 | Multiple directory traversal vulnerabilities in plugins/wp-db-backup.php in WordPress before 2.0.5 a... | S | |
| CVE-2006-5706 | Unspecified vulnerabilities in PHP, probably before 5.2.0, allow local users to bypass open_basedir ... | | |
| CVE-2006-5707 | SQL injection vulnerability in index.php in PHPEasyData Pro 1.4.1 and 2.2.1 allows remote attackers ... | E | |
| CVE-2006-5708 | Multiple unspecified vulnerabilities in MDaemon and WorldClient in Alt-N Technologies MDaemon before... | S | |
| CVE-2006-5709 | Unspecified vulnerability in WorldClient in Alt-N Technologies MDaemon before 9.50 has unknown impac... | | |
| CVE-2006-5710 | The Airport driver for certain Orinoco based Airport cards in Darwin kernel 8.8.0 in Apple Mac OS X ... | E | |
| CVE-2006-5711 | ECI Telecom B-FOCuS Wireless 802.11b/g ADSL2+ Router allows remote attackers to read arbitrary files... | E | |
| CVE-2006-5712 | Cross-site scripting (XSS) vulnerability in Mirapoint WebMail allows remote attackers to inject arbi... | E | |
| CVE-2006-5713 | Cross-site scripting (XSS) vulnerability in Easy File Sharing (EFS) Web Server 4.0 allows remote att... | E | |
| CVE-2006-5714 | Easy File Sharing (EFS) Web Server 4.0, when running on an NTFS file system, allows remote attackers... | E | |
| CVE-2006-5715 | Easy File Sharing (EFS) Easy Address Book 1.2, when run on an NTFS file system, allows remote attack... | E | |
| CVE-2006-5716 | Directory traversal vulnerability in aff_news.php in FreeNews 2.1 allows remote attackers to include... | | |
| CVE-2006-5717 | Multiple cross-site scripting (XSS) vulnerabilities in Zend Google Data Client Library (ZendGData) P... | | |
| CVE-2006-5718 | Cross-site scripting (XSS) vulnerability in error.php in phpMyAdmin 2.6.4 through 2.9.0.2 allows rem... | S | |
| CVE-2006-5719 | SQL injection vulnerability in libs/sessions.lib.php in BytesFall Explorer (bfExplorer) 0.0.6 allows... | | |
| CVE-2006-5720 | SQL injection vulnerability in modules/journal/search.php in the Journal module in Francisco Burzi P... | | |
| CVE-2006-5721 | The \Device\SandBox driver in Outpost Firewall PRO 4.0 (964.582.059) allows local users to cause a d... | E | |
| CVE-2006-5722 | Multiple PHP remote file inclusion vulnerabilities in Segue CMS 1.5.9 and earlier, when magic_quotes... | | |
| CVE-2006-5723 | SQL injection vulnerability in DataparkSearch Engine 4.42 and earlier allows remote attackers to exe... | S | |
| CVE-2006-5724 | Heap-based buffer overflow the "Answering Service" function in ICQ 2003b Build 3916 allows local use... | E | |
| CVE-2006-5725 | The SSL server in AEP Smartgate 4.3b allows remote attackers to determine existence of directories v... | E S | |
| CVE-2006-5726 | alloccgblk in the UFS filesystem in Solaris 10 allows local users to cause a denial of service (memo... | E | |
| CVE-2006-5727 | PHP remote file inclusion vulnerability in admin/controls/cart.php in sazcart 1.5 allows remote atta... | E | |
| CVE-2006-5728 | XM Easy Personal FTP Server 5.2.1 and earlier allows remote authenticated users to cause a denial of... | E | |
| CVE-2006-5729 | Yazd Discussion Forum before 3.0 beta does not properly manage forum permissions, which allows remot... | S | |
| CVE-2006-5730 | PHP remote file inclusion vulnerability in manager/media/browser/mcpuk/connectors/php/Commands/Thumb... | E | |
| CVE-2006-5731 | Directory traversal vulnerability in classes/index.php in Lithium CMS 4.04c and earlier allows remot... | E | |
| CVE-2006-5732 | SQL injection vulnerability in logout.php in T.G.S. CMS 0.1.7 and earlier allows remote attackers to... | E | |
| CVE-2006-5733 | Directory traversal vulnerability in error.php in PostNuke 0.763 and earlier allows remote attackers... | E | |
| CVE-2006-5734 | Multiple PHP remote file inclusion vulnerabilities in ATutor 1.5.3.2 allow remote attackers to execu... | | |
| CVE-2006-5735 | Directory traversal vulnerability in include/common.php in PunBB before 1.2.14 allows remote authent... | | |
| CVE-2006-5736 | SQL injection vulnerability in search.php in PunBB before 1.2.14, when the PHP installation is vulne... | E S | |
| CVE-2006-5737 | PunBB uses a predictable cookie_seed value that can be derived from the time of registration of the ... | | |
| CVE-2006-5738 | Multiple SQL injection vulnerabilities in PunBB before 1.2.14 allow remote authenticated administrat... | S | |
| CVE-2006-5739 | PHP remote file inclusion vulnerability in cpadmin/cpa_index.php in Leicestershire communityPortals ... | E | |
| CVE-2006-5740 | Unspecified vulnerability in the LDAP dissector in Wireshark (formerly Ethereal) 0.99.3 allows remot... | | |
| CVE-2006-5741 | Multiple cross-site scripting (XSS) vulnerabilities in AirMagnet Enterprise before 7.5 build 6307 al... | | |
| CVE-2006-5742 | The AirMagnet Enterprise console and Remote Sensor console (Laptop) in AirMagnet Enterprise before 7... | | |
| CVE-2006-5743 | Multiple cross-site scripting (XSS) vulnerabilities in Highwall Enterprise and Highwall Endpoint 4.0... | | |
| CVE-2006-5744 | Multiple SQL injection vulnerabilities in Highwall Enterprise and Highwall Endpoint 4.0.2.11045 mana... | | |
| CVE-2006-5745 | Unspecified vulnerability in the setRequestHeader method in the XMLHTTP (XML HTTP) ActiveX Control 4... | E | |
| CVE-2006-5746 | The console in AirMagnet Enterprise before 7.5 build 6307 does not properly validate the Enterprise ... | | |
| CVE-2006-5747 | Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonk... | S | |
| CVE-2006-5748 | Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 1.5.0.8, Thu... | S | |
| CVE-2006-5749 | The isdn_ppp_ccp_reset_alloc_state function in drivers/isdn/isdn_ppp.c in the Linux 2.4 kernel befor... | S | |
| CVE-2006-5750 | Directory traversal vulnerability in the DeploymentFileRepository class in JBoss Application Server ... | S | |
| CVE-2006-5751 | Integer overflow in the get_fdb_entries function in net/bridge/br_ioctl.c in the Linux kernel before... | S | |
| CVE-2006-5752 | Cross-site scripting (XSS) vulnerability in mod_status.c in the mod_status module in Apache HTTP Ser... | S | |
| CVE-2006-5753 | Unspecified vulnerability in the listxattr system call in Linux kernel, when a "bad inode" is presen... | | |
| CVE-2006-5754 | The aio_setup_ring function in Linux kernel does not properly initialize a variable, which allows lo... | | |
| CVE-2006-5755 | Linux kernel before 2.6.18, when running on x86_64 systems, does not properly save or restore EFLAGS... | | |
| CVE-2006-5756 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in... | R | |
| CVE-2006-5757 | Race condition in the __find_get_block_slow function in the ISO9660 filesystem in Linux 2.6.18 and p... | E S | |
| CVE-2006-5758 | The Graphics Rendering Engine in Microsoft Windows 2000 through 2000 SP4 and Windows XP through SP2 ... | E | |
| CVE-2006-5759 | index.php in Rhadrix If-CMS, possibly 1.01 and 2.07, allows remote attackers to obtain the full path... | E | |
| CVE-2006-5760 | Multiple PHP remote file inclusion vulnerabilities in phpDynaSite 3.2.2 and earlier allow remote att... | E | |
| CVE-2006-5761 | Cross-site scripting (XSS) vulnerability in index.php in Rhadrix If-CMS 1.01 and 2.07 allows remote ... | E | |
| CVE-2006-5762 | PHP remote file inclusion vulnerability in forgot_pass.php in Free File Hosting 1.1 and earlier allo... | E | |
| CVE-2006-5763 | Multiple PHP remote file inclusion vulnerabilities in Free File Hosting 1.1, and possibly earlier, w... | E | |
| CVE-2006-5764 | PHP remote file inclusion vulnerability in contact.php in Free File Hosting 1.1 and earlier allows r... | | |
| CVE-2006-5765 | SQL injection vulnerability in rss.php in Article Script 1.6.3 and earlier allows remote attackers t... | E | |
| CVE-2006-5766 | PHP remote file inclusion vulnerability in volume.php in Article System 0.6 allows remote attackers ... | E | |
| CVE-2006-5767 | PHP remote file inclusion vulnerability in includes/xhtml.php in Drake CMS 0.2.2 alpha rev.846 and e... | E | |
| CVE-2006-5768 | Multiple PHP remote file inclusion vulnerabilities in Cyberfolio 2.0 RC1 and earlier, when register_... | E | |
| CVE-2006-5769 | Multiple cross-site scripting (XSS) vulnerabilities in admin.tool CMS 3 and earlier allow remote att... | | |
| CVE-2006-5770 | Multiple cross-site scripting (XSS) vulnerabilities in ac4p Mobile allow remote attackers to inject ... | E | |
| CVE-2006-5771 | Cross-site scripting (XSS) vulnerability in Arkoon SSL360 1.0 and 2.0 before 2.0/2 allows remote att... | | |
| CVE-2006-5772 | Multiple SQL injection vulnerabilities in index.php in FreeWebshop 2.2.1 and earlier allow remote at... | E | |
| CVE-2006-5773 | Directory traversal vulnerability in index.php in FreeWebshop 2.2.1 and earlier allows remote attack... | E | |
| CVE-2006-5774 | Cross-site scripting (XSS) vulnerability in Hyper NIKKI System before 2.19.9 allows remote attackers... | S | |
| CVE-2006-5775 | Cross-site scripting (XSS) vulnerability in profile.php in FunkBoard 0.71 before 4 November 2006 at ... | S | |
| CVE-2006-5776 | Multiple PHP remote file inclusions in Ariadne 2.4.1 allows remote attackers to execute arbitrary PH... | E | |
| CVE-2006-5777 | Creasito E-Commerce Content Manager 1.3.08 allows remote attackers to bypass authentication and perf... | E | |
| CVE-2006-5778 | ftpd in linux-ftpd 0.17, and possibly other versions, performs a chdir before setting the UID, which... | | |
| CVE-2006-5779 | OpenLDAP before 2.3.29 allows remote attackers to cause a denial of service (daemon crash) via LDAP ... | E | |
| CVE-2006-5780 | Stack-based buffer overflow in nfsd.exe in XLink Omni-NFS Server 5.2 allows remote attackers to exec... | E | |
| CVE-2006-5781 | Stack-based buffer overflow in the handshake function in iodine 0.3.2 allows remote attackers to exe... | | |
| CVE-2006-5782 | radexecd.exe in HP OpenView Client Configuraton Manager (CCM) does not require authentication before... | | |
| CVE-2006-5783 | Firefox 1.5.0.7 on Kubuntu Linux allows remote attackers to cause a denial of service (crash) via a ... | | |
| CVE-2006-5784 | Unspecified vulnerability in enserver.exe in SAP Web Application Server 6.40 before patch 136 and 7.... | E S | |
| CVE-2006-5785 | Unspecified vulnerability in SAP Web Application Server 6.40 before patch 136 and 7.00 before patch ... | S | |
| CVE-2006-5786 | Directory traversal vulnerability in class2.php in e107 0.7.5 and earlier allows remote attackers to... | E | |
| CVE-2006-5787 | admin/index.php in IPrimal Forums as of 20061105 allows remote attackers to bypass authentication an... | E | |
| CVE-2006-5788 | PHP remote file inclusion vulnerability in (1) index.php and (2) admin/index.php in IPrimal Forums a... | E | |
| CVE-2006-5789 | War FTP Daemon (WarFTPd) 1.82.00-RC11 allows remote authenticated users to cause a denial of service... | E | |
| CVE-2006-5790 | Multiple format string vulnerabilities in elogd.c in ELOG 2.6.2 and earlier allow remote attackers t... | | |
| CVE-2006-5791 | Multiple cross-site scripting (XSS) vulnerabilities in elogd.c in ELOG 2.6.2 and earlier allow remot... | | |
| CVE-2006-5792 | Unspecified vulnerability in XLink Omni-NFS Enterprise allows remote attackers to execute arbitrary ... | E | |
| CVE-2006-5793 | The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 through 1.2.12 uses... | S | |
| CVE-2006-5794 | Unspecified vulnerability in the sshd Privilege Separation Monitor in OpenSSH before 4.5 causes weak... | S | |
| CVE-2006-5795 | Multiple PHP remote file inclusion vulnerabilities in OpenEMR 2.8.1 and earlier, when register_globa... | E | |
| CVE-2006-5796 | Multiple PHP remote file inclusion vulnerabilities in Soholaunch Pro Edition 4.9 r46 and earlier, wh... | E | |
| CVE-2006-5797 | Multiple SQL injection vulnerabilities in default.asp in Xenis.creator CMS allow remote attackers to... | | |
| CVE-2006-5798 | SQL injection vulnerability in default.asp in Xenis.creator CMS allows remote attackers to execute a... | | |
| CVE-2006-5799 | Multiple cross-site scripting (XSS) vulnerabilities in default.asp in xenis.creator CMS allow remote... | | |
| CVE-2006-5800 | Cross-site scripting (XSS) vulnerability in default.asp in xenis.creator CMS allows remote attackers... | | |
| CVE-2006-5801 | The owserver module in owfs and owhttpd 2.5p5 and earlier does not properly check the path type, whi... | S | |
| CVE-2006-5802 | SQL injection vulnerability in message_details.php in The Web Drivers Simple Forum, dated 20060318, ... | E | |
| CVE-2006-5803 | PHP remote file inclusion vulnerability in modules/mx_smartor/album.php in the mxBB Smartor Album mo... | E | |
| CVE-2006-5804 | PHP remote file inclusion vulnerability in admin.php in Advanced Guestbook 2.3.1 allows remote attac... | E | |
| CVE-2006-5805 | Microsoft Internet Explorer 7 allows remote attackers to cause a security certificate from a secure ... | E | |
| CVE-2006-5806 | SSL VPN Client in Cisco Secure Desktop before 3.1.1.45, when configured to spawn a web browser after... | | |
| CVE-2006-5807 | Cisco Secure Desktop (CSD) before 3.1.1.45 allows local users to escape out of the secure desktop en... | | |
| CVE-2006-5808 | The installation of Cisco Secure Desktop (CSD) before 3.1.1.45 uses insecure default permissions (al... | S | |
| CVE-2006-5809 | Multiple unspecified vulnerabilities in Jonathon J. Freeman OvBB before 0.13a have unknown impact an... | S | |
| CVE-2006-5810 | Cross-site scripting (XSS) vulnerability in modules/wfdownloads/newlist.php in XOOPS 1.0 allows remo... | E | |
| CVE-2006-5811 | PHP remote file inclusion vulnerability in library/translation.inc.php in OpenEMR 2.8.1, with regist... | E | |
| CVE-2006-5812 | Unspecified vulnerability in Kerio MailServer allows attackers to cause a denial of service, as demo... | E | |
| CVE-2006-5813 | Unspecified vulnerability in Novell eDirectory 8.8 allows attackers to cause a denial of service, as... | E | |
| CVE-2006-5814 | Unspecified vulnerability in Novell eDirectory allows remote attackers to execute arbitrary code, as... | E | |
| CVE-2006-5815 | Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote atta... | | |
| CVE-2006-5816 | Multiple PHP remote file inclusion vulnerabilities in Dmitry Sheiko Business Card Web Builder (BCWB)... | | |
| CVE-2006-5817 | prl_dhcpd in Parallels Desktop for Mac Build 1940 uses insecure permissions (0666) for /Library/Para... | | |
| CVE-2006-5818 | Multiple buffer overflows in tunekrnl in IBM Lotus Domino 6.x before 6.5.5 FP2 and 7.x before 7.0.2 ... | S | |
| CVE-2006-5819 | Verity Ultraseek before 5.7 allows remote attackers to use the server as a proxy for web attacks and... | S | |
| CVE-2006-5820 | The LinkSBIcons method in the SuperBuddy ActiveX control (Sb.SuperBuddy.1) in America Online 9.0 Sec... | | |
| CVE-2006-5821 | Heap-based buffer overflow in the IMA_SECURE_DecryptData1 function in ImaSystem.dll for Citrix MetaF... | S | |
| CVE-2006-5822 | Stack-based buffer overflow in the NetBackup bpcd daemon (bpcd.exe) in Symantec Veritas NetBackup 5.... | S | |
| CVE-2006-5823 | The zlib_inflate function in Linux kernel 2.6.x allows local users to cause a denial of service (cra... | | |
| CVE-2006-5824 | Integer overflow in the ffs_rdextattr function in FreeBSD 6.1 allows local users to cause a denial o... | | |
| CVE-2006-5825 | Cross-site scripting (XSS) vulnerability in index.php in Kayako SupportSuite 3.00.32 allows remote a... | E | |
| CVE-2006-5826 | Buffer overflow in Texas Imperial Software WFTPD Pro Server 3.23.1.1 allows remote authenticated use... | E | |
| CVE-2006-5827 | Multiple cross-site scripting (XSS) vulnerabilities in index.php in phpComasy CMS 0.7.9pre and earli... | | |
| CVE-2006-5828 | SQL injection vulnerability in detail.php in DeltaScripts PHP Classifieds 7.1 and earlier allows rem... | E | |
| CVE-2006-5829 | Multiple SQL injection vulnerabilities in All In One Control Panel (AIOCP) 1.3.007 and earlier allow... | E | |
| CVE-2006-5830 | Multiple cross-site scripting (XSS) vulnerabilities in All In One Control Panel (AIOCP) 1.3.007 and ... | E | |
| CVE-2006-5831 | PHP remote file inclusion vulnerability in admin/code/index.php in All In One Control Panel (AIOCP) ... | E | |
| CVE-2006-5832 | All In One Control Panel (AIOCP) 1.3.007 and earlier allows remote attackers to obtain the full path... | E | |
| CVE-2006-5833 | gbcms_php_files/up_loader.php GreenBeast CMS 1.3 does not require authentication to upload files, wh... | E | |
| CVE-2006-5834 | Directory traversal vulnerability in general.php in OpenSolution Quick.Cms.Lite 0.3 allows remote at... | E | |
| CVE-2006-5835 | The Notes Remote Procedure Call (NRPC) protocol in IBM Lotus Notes Domino before 6.5.5 FP2 and 7.x b... | E S | |
| CVE-2006-5836 | The fpathconf syscall function in bsd/kern/kern_descrip.c in the Darwin kernel (XNU) 8.8.1 in Apple ... | E | |
| CVE-2006-5837 | Static code injection vulnerability in chat_panel.php in the SimpleChat 1.0.0 module for iWare Profe... | E | |
| CVE-2006-5838 | PHP remote file inclusion vulnerability in lib/class.Database.php in NewP News Publication System 1.... | E | |
| CVE-2006-5839 | PHP remote file inclusion vulnerability in ad_main.php in PHPAdventure 1.1-Alpha and earlier allows ... | E | |
| CVE-2006-5840 | Multiple SQL injection vulnerabilities in Abarcar Realty Portal allow remote attackers to execute ar... | E S | |
| CVE-2006-5841 | Multiple PHP remote file inclusion vulnerabilities in dodosmail.php in DodosMail 2.0.1 and earlier, ... | E | |
| CVE-2006-5842 | The keystore file in Unicore Client before 5.6 build 5, when running on Unix systems, has insecure d... | S | |
| CVE-2006-5843 | Cross-site scripting (XSS) vulnerability in index.php in Speedywiki 2.0 allows remote attackers to i... | E | |
| CVE-2006-5844 | Speedywiki 2.0 allows remote attackers to obtain the full path of the web server via the (1) showRev... | E | |
| CVE-2006-5845 | Unrestricted file upload vulnerability in index.php in Speedywiki 2.0 allows remote authenticated us... | | |
| CVE-2006-5846 | Directory traversal vulnerability in index.php in FreeWebshop 2.2.2 and earlier allows remote attack... | E S | |
| CVE-2006-5847 | Cross-site scripting (XSS) vulnerability in index.php in FreeWebshop 2.2.2 and earlier allows remote... | E S | |
| CVE-2006-5848 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-5878. Reason: This candida... | R | |
| CVE-2006-5849 | PHP remote file inclusion vulnerability in inc/irayofuncs.php in IrayoBlog alpha-0.2.4 allows remote... | E | |
| CVE-2006-5850 | Stack-based buffer overflow in Essentia Web Server 2.15 for Windows allows remote attackers to execu... | E | |
| CVE-2006-5851 | openexec in OpenBase SQL before 10.0.1 allows local users to create arbitrary files via a symlink at... | E | |
| CVE-2006-5852 | Untrusted search path vulnerability in openexec in OpenBase SQL before 10.0.1 allows local users to ... | E | |
| CVE-2006-5853 | Cross-site scripting (XSS) vulnerability in logon.aspx in Immediacy CMS (Immediacy .NET CMS) 5.2 all... | E | |
| CVE-2006-5854 | Multiple buffer overflows in the Spooler service (nwspool.dll) in Novell Netware Client 4.91 through... | S | |
| CVE-2006-5855 | Multiple buffer overflows in IBM Tivoli Storage Manager (TSM) before 5.2.9 and 5.3.x before 5.3.4 al... | S | |
| CVE-2006-5856 | Stack-based buffer overflow in the Adobe Download Manager before 2.2 allows remote attackers to exec... | S | |
| CVE-2006-5857 | Adobe Reader and Acrobat 7.0.8 and earlier allows user-assisted remote attackers to execute code via... | S | |
| CVE-2006-5858 | Adobe ColdFusion MX 7 through 7.0.2, and JRun 4, when run on Microsoft IIS, allows remote attackers ... | S | |
| CVE-2006-5859 | Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 7.0 and 7.0.1, when Global Script ... | | |
| CVE-2006-5860 | Cross-site scripting (XSS) vulnerability in the administrator console for Adobe JRun 4.0, as used in... | S | |
| CVE-2006-5861 | The Independent Management Architecture (IMA) service (ImaSrv.exe) in Citrix MetaFrame XP 1.0 and 2.... | S | |
| CVE-2006-5862 | Directory traversal vulnerability in the session mechanism of the web interface for Network Administ... | S | |
| CVE-2006-5863 | PHP remote file inclusion vulnerability in inc/session.php for LetterIt 2 allows remote attackers to... | E | |
| CVE-2006-5864 | Stack-based buffer overflow in the ps_gettext function in ps.c for GNU gv 3.6.2, and possibly earlie... | E | |
| CVE-2006-5865 | PHP remote file inclusion vulnerability in language.inc.php in MyAlbum 3.02 and earlier allows remot... | E | |
| CVE-2006-5866 | Directory traversal vulnerability in Mdoc/view-sourcecode.php for phpManta 1.0.2 and earlier allows ... | E | |
| CVE-2006-5867 | fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over u... | S | |
| CVE-2006-5868 | Multiple buffer overflows in Imagemagick 6.0 before 6.0.6.2, and 6.2 before 6.2.4.5, has unknown imp... | | |
| CVE-2006-5869 | pstotext before 1.9 allows user-assisted attackers to execute arbitrary commands via shell metachara... | S | |
| CVE-2006-5870 | Multiple integer overflows in OpenOffice.org (OOo) 2.0.4 and earlier, and possibly other versions be... | S | |
| CVE-2006-5871 | smbfs in Linux kernel 2.6.8 and other versions, and 2.4.x before 2.4.34, when UNIX extensions are en... | | |
| CVE-2006-5872 | login.pl in SQL-Ledger before 2.6.21 and LedgerSMB before 1.1.5 allows remote attackers to execute a... | S | |
| CVE-2006-5873 | Buffer overflow in the cluster_process_heartbeat function in cluster.c in layer 2 tunneling protocol... | S | |
| CVE-2006-5874 | Clam AntiVirus (ClamAV) 0.88 and earlier allows remote attackers to cause a denial of service (crash... | S | |
| CVE-2006-5875 | eoc.py in Enemies of Carlotta (EoC) before 1.2.4 allows remote attackers to execute arbitrary comman... | S | |
| CVE-2006-5876 | The soup_headers_parse function in soup-headers.c for libsoup HTTP library before 2.2.99 allows remo... | | |
| CVE-2006-5877 | The enigmail extension before 0.94.2 does not properly handle large, encrypted file e-mail attachmen... | S | |
| CVE-2006-5878 | Cross-site request forgery (CSRF) vulnerability in Edgewall Trac 0.10 and earlier allows remote atta... | S | |
| CVE-2006-5879 | SQL injection vulnerability in default1.asp in ASPPortal 4.0.0 beta and earlier allows remote attack... | E | |
| CVE-2006-5880 | SQL injection vulnerability on the subMenu page in switch.asp in Munch Pro 1.0 allows remote attacke... | E | |
| CVE-2006-5881 | SQL injection vulnerability in cl_CatListing.asp in Dynamic Dataworx NuCommunity 1.0 allows remote a... | E | |
| CVE-2006-5882 | Stack-based buffer overflow in the Broadcom BCMWL5.SYS wireless device driver 3.50.21.10, as used in... | S | |
| CVE-2006-5883 | Multiple cross-site scripting (XSS) vulnerabilities in cPanel 10 allow remote authenticated users to... | E | |
| CVE-2006-5884 | Multiple unspecified vulnerabilities in DirectAnimation ActiveX controls for Microsoft Internet Expl... | | |
| CVE-2006-5885 | SQL injection vulnerability in Products.asp in NuStore 1.0 allows remote attackers to execute arbitr... | E | |
| CVE-2006-5886 | SQL injection vulnerability in propertysdetails.asp in Dynamic Dataworx NuRealestate (NuRems) 1.0 an... | E | |
| CVE-2006-5887 | SQL injection vulnerability in CampusNewsDetails.asp in Dynamic Dataworx NuSchool 1.0 allows remote ... | E | |
| CVE-2006-5888 | SQL injection vulnerability in viewarticle.asp in Superfreaker Studios UPublisher 1.0 allows remote ... | E | |
| CVE-2006-5889 | SQL injection vulnerability in printLog.php in BrewBlogger (BB) 1.3.1 allows remote attackers to exe... | E | |
| CVE-2006-5890 | SQL injection vulnerability in detail.asp in Superfreaker Studios USupport 1.0 allows remote attacke... | E | |
| CVE-2006-5891 | SQL injection vulnerability in detail.asp in Superfreaker Studios UStore 1.0 allows remote attackers... | E | |
| CVE-2006-5892 | SQL injection vulnerability in MoreInfo.asp in The Net Guys ASPired2Poll 1.0 and earlier allows remo... | E | |
| CVE-2006-5893 | Multiple PHP remote file inclusion vulnerabilities in iWonder Designs Storystream 0.4.0.0 allow remo... | E | |
| CVE-2006-5894 | Directory traversal vulnerability in lang.php in Rama CMS 0.68 and earlier, when register_globals is... | E | |
| CVE-2006-5895 | PHP remote file inclusion vulnerability in core/core.php in EncapsCMS 0.3.6 allows remote attackers ... | E | |
| CVE-2006-5896 | REMLAB Web Mech Designer 2.0.5 allows remote attackers to obtain the full path of the script via an ... | E | |
| CVE-2006-5897 | Multiple directory traversal vulnerabilities in PhpMyChat Plus 1.9 and earlier allow remote attacker... | | |
| CVE-2006-5898 | Directory traversal vulnerability in localization/languages.lib.php3 in PhpMyChat 0.14.5 and earlier... | | |
| CVE-2006-5899 | PHP remote file inclusion vulnerability in install.php3 in @cid stats 2.3 allows remote attackers to... | | |
| CVE-2006-5900 | Cross-site scripting (XSS) vulnerability in the incubator/tests/Zend/Http/_files/testRedirections.ph... | | |
| CVE-2006-5901 | Hawking Technology wireless router WR254-CA uses a hardcoded IP address among the set of DNS server ... | | |
| CVE-2006-5902 | viksoe GMail Drive shell extension allows remote attackers to perform virtual filesystem actions via... | | |
| CVE-2006-5903 | Rahul Jonna Gmail File Space (GSpace) allows remote attackers to perform virtual filesystem actions ... | | |
| CVE-2006-5904 | Multiple PHP remote file inclusion vulnerabilities in MWChat Pro 7.0 allow remote attackers to execu... | | |
| CVE-2006-5905 | Web Directory Pro allows remote attackers to (1) backup the database and obtain the backup via a dir... | E | |
| CVE-2006-5906 | PHP remote file inclusion vulnerability in modules/bannieres/bannieres.php in Jean-Christophe Ramos ... | | |
| CVE-2006-5907 | SQL injection vulnerability in modules/bannieres/bannieres.php in Jean-Christophe Ramos SCRIPT BANNI... | E | |
| CVE-2006-5908 | Multiple SQL injection vulnerabilities in the login_user function in yans.func.php in Lucas Rodrigue... | E | |
| CVE-2006-5909 | generaloptions.php in Paul Tarjan Stanford Conference And Research Forum (SCARF) before 20070227 doe... | | |
| CVE-2006-5910 | Multiple PHP remote file inclusion vulnerabilities in Campware Campsite before 20061110 allow remote... | S | |
| CVE-2006-5911 | Multiple PHP remote file inclusion vulnerabilities in Campware Campsite before 2.6.2 allow remote at... | S | |
| CVE-2006-5912 | Unspecified vulnerability in Campware Campsite before 2.6.2 has unknown impact and attack vectors, r... | S | |
| CVE-2006-5913 | Microsoft Internet Explorer 7 allows remote attackers to (1) cause a security certificate from a sec... | E | |
| CVE-2006-5914 | SQL injection vulnerability in ls.php in SAMEDIA LandShop allows remote attackers to execute arbitra... | E | |
| CVE-2006-5915 | Multiple cross-site scripting (XSS) vulnerabilities in ls.php in SAMEDIA LandShop allow remote attac... | E | |
| CVE-2006-5916 | Intego VirusBarrier X4 allows context-dependent attackers to bypass virus protection by quickly inje... | E | |
| CVE-2006-5917 | Multiple SQL injection vulnerabilities in OmniStar Article Manager allow remote attackers to execute... | E | |
| CVE-2006-5918 | Unrestricted file upload vulnerability in RapidKill (aka PHP Rapid Kill) 5.7 Pro, and certain other ... | | |
| CVE-2006-5919 | PHP remote file inclusion vulnerability in admin/e_data/visEdit_control.class.php in ActiveCampaign ... | E | |
| CVE-2006-5920 | PHP remote file inclusion vulnerability in common.php in Yuuki Yoshizawa Exporia 0.3.0 allows remote... | E | |
| CVE-2006-5921 | Multiple cross-site scripting (XSS) vulnerabilities in add_comment.php in Wheatblog (wB) allow remot... | | |
| CVE-2006-5922 | index.php in Wheatblog (wB) allows remote attackers to obtain sensitive information via certain valu... | | |
| CVE-2006-5923 | PHP remote file inclusion vulnerability in index.php in Chris Mac gtcatalog (aka GimeScripts Shoppin... | E | |
| CVE-2006-5924 | Cross-site scripting (XSS) vulnerability in index.php in Efficient IP iPmanager (IPm) 2.3 allows rem... | E | |
| CVE-2006-5925 | Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote attackers to exe... | | |
| CVE-2006-5926 | Multiple SQL injection vulnerabilities in mail.php in Vallheru before 1.0.7 allow remote attackers t... | | |
| CVE-2006-5927 | SQL injection vulnerability in cpLogin.asp in ASP Scripter Easy Portal 1.4 and Live Support 1.3 allo... | | |
| CVE-2006-5928 | Multiple PHP remote file inclusion vulnerabilities in Phpjobscheduler 3.0 allow remote attackers to ... | E | |
| CVE-2006-5929 | PHP remote file inclusion vulnerability in firepjs.php in Phpjobscheduler 3.0 allows remote attacker... | | |
| CVE-2006-5930 | Multiple PHP remote file inclusion vulnerabilities in Aigaion Web based bibliography management syst... | E | |
| CVE-2006-5931 | Multiple PHP remote file inclusion vulnerabilities in Aigaion Web based bibliography management syst... | | |
| CVE-2006-5932 | Kahua before 0.7, when running multiple applications under a single supervisor, grants application a... | S | |
| CVE-2006-5933 | SQL injection vulnerability in update.asp in UltraSite 1.0 allows remote attackers to execute arbitr... | | |
| CVE-2006-5934 | SQL injection vulnerability in admin/default.asp in Estate Agent Manager 1.3 and earlier allows remo... | E | |
| CVE-2006-5935 | SQL injection vulnerability in index.php in ShopSystems 4.0 and earlier allows remote attackers to e... | | |
| CVE-2006-5936 | SQL injection vulnerability in dept.asp in SiteXpress E-Commerce System allows remote attackers to e... | E | |
| CVE-2006-5937 | Multiple integer overflows in Grisoft AVG Anti-Virus before 7.1.407 allow remote attackers to execut... | S | |
| CVE-2006-5938 | Grisoft AVG Anti-Virus before 7.1.407 has unknown impact and remote attack vectors involving an unin... | S | |
| CVE-2006-5939 | Grisoft AVG Anti-Virus before 7.1.407 allows remote attackers to cause a denial of service (crash) v... | S | |
| CVE-2006-5940 | Unspecified vulnerability in Grisoft AVG Anti-Virus before 7.1.407 has unknown impact and remote att... | S | |
| CVE-2006-5941 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-2177. Reason: This candida... | R | |
| CVE-2006-5942 | Cross-site scripting (XSS) vulnerability in inventory/display/display_results.asp in Website Designs... | E | |
| CVE-2006-5943 | Multiple SQL injection vulnerabilities in inventory/display/imager.asp in Website Designs for Less I... | E | |
| CVE-2006-5944 | Cross-site scripting (XSS) vulnerability in csm/asp/listings.asp in MGinternet Car Site Manager (CSM... | E | |
| CVE-2006-5945 | Multiple SQL injection vulnerabilities in MGinternet Car Site Manager (CSM) allow remote attackers t... | E | |
| CVE-2006-5946 | SQL injection vulnerability in demo/glossary/glossary.asp in FunkyASP Glossary 1.0 allows remote att... | E | |
| CVE-2006-5947 | Multiple directory traversal vulnerabilities in Conxint FTP Server 2.2.0603, and possibly earlier, a... | | |
| CVE-2006-5948 | PHP remote file inclusion vulnerability in pntUnit/Inspect.php in phpPeanuts 1.1 and earlier allows ... | E | |
| CVE-2006-5949 | Directory traversal vulnerability in ALTools ALFTP FTP Server 4.1 beta 1, and possibly earlier, allo... | | |
| CVE-2006-5950 | Unspecified vulnerability in ALTools ALFTP FTP Server 4.1 beta 1, and possibly earlier, allows remot... | | |
| CVE-2006-5951 | PHP remote file inclusion vulnerability in pipe.php in Exophpdesk 1.2 allows remote attackers to exe... | E | |
| CVE-2006-5952 | SQL injection vulnerability in admin/default.asp in ASP Smiley 1.0 allows remote attackers to execut... | E | |
| CVE-2006-5953 | SQL injection vulnerability in viewcart.asp in Evolve shopping cart (aka Evolve Merchant) allows rem... | E | |
| CVE-2006-5954 | SQL injection vulnerability in page.asp in NetVIOS 2.0 and earlier allows remote attackers to execut... | E | |
| CVE-2006-5955 | SQL injection vulnerability in listings.asp in 20/20 DataShed (aka Real Estate Listing System) allow... | E | |
| CVE-2006-5956 | XLineSoft PHPRunner 3.1 stores the (1) database server name, (2) database names, (3) usernames, and ... | | |
| CVE-2006-5957 | Multiple SQL injection vulnerabilities in INFINICART allow remote attackers to execute arbitrary SQL... | | |
| CVE-2006-5958 | Multiple cross-site scripting (XSS) vulnerabilities in INFINICART allow remote attackers to inject a... | E | |
| CVE-2006-5959 | SQL injection vulnerability in browse.asp in A+ Store E-Commerce allows remote attackers to execute ... | E | |
| CVE-2006-5960 | Multiple cross-site scripting (XSS) vulnerabilities in account_login.asp in A+ Store E-Commerce allo... | E | |
| CVE-2006-5961 | Buffer overflow in Mercury Mail Transport System 4.01b for Windows has unknown impact and attack vec... | E | |
| CVE-2006-5962 | Multiple SQL injection vulnerabilities in Hpecs Shopping Cart allow remote attackers to execute arbi... | E | |
| CVE-2006-5963 | Directory traversal vulnerability in PentaZip 8.5.1.190 and PentaSuite-PRO 8.5.1.221 allows user-ass... | | |
| CVE-2006-5964 | choShilA.bpl in PentaZip 8.5.1.190 and PentaSuite-PRO 8.5.1.221 allows local users, and user-assiste... | | |
| CVE-2006-5965 | PassGo SSO Plus 2.1.0.32, and probably earlier versions, uses insecure permissions (Everyone/Full Co... | | |
| CVE-2006-5966 | Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to (1) reboot t... | S | |
| CVE-2006-5967 | Race condition in Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attacke... | S | |
| CVE-2006-5968 | MDaemon 9.0.5, 9.0.6, 9.51, and 9.53, and possibly other versions, installs the MDaemon application ... | | |
| CVE-2006-5969 | CRLF injection vulnerability in the evalFolderLine function in fvwm 2.5.18 and earlier allows local ... | | |
| CVE-2006-5970 | Verity Ultraseek before 5.7 allows remote attackers to obtain sensitive information via direct reque... | | |
| CVE-2006-5971 | Absolute path traversal vulnerability in admin/logfile.txt in Verity Ultraseek before 5.6.2 allows r... | | |
| CVE-2006-5972 | Stack-based buffer overflow in WG111v2.SYS in NetGear WG111v2 wireless adapter (USB) allows remote a... | E | |
| CVE-2006-5973 | Off-by-one buffer overflow in Dovecot 1.0test53 through 1.0.rc14, and possibly other versions, when ... | S | |
| CVE-2006-5974 | fetchmail 6.3.5 and 6.3.6 before 6.3.6-rc4, when refusing a message delivered via the mda option, al... | S | |
| CVE-2006-5975 | Multiple cross-site scripting (XSS) vulnerabilities in comments.asp in BlogMe 3.0 allow remote attac... | E | |
| CVE-2006-5976 | Multiple SQL injection vulnerabilities in admin_login.asp in BlogMe 3.0 allow remote attackers to ex... | E | |
| CVE-2006-5977 | Multiple SQL injection vulnerabilities in MultiCalendars allow remote attackers to execute arbitrary... | | |
| CVE-2006-5978 | Unspecified vulnerability in E-Xoopport before 2.2.0 has unknown impact and attack vectors, as addre... | S | |
| CVE-2006-5979 | Renasoft NetJetServer 2.5.3.939, and possibly earlier, uses insecure permissions for Global.asa, whi... | | |
| CVE-2006-5980 | adm_lgn_admin.asp in Renasoft NetJetServer 2.5.3.939, and possibly earlier, does not properly perfor... | | |
| CVE-2006-5981 | Multiple directory traversal vulnerabilities in SeleniumServer FTP Server 1.0, and possibly earlier,... | | |
| CVE-2006-5982 | SeleniumServer FTP Server 1.0, and possibly earlier, stores user passwords in plaintext in the Serve... | | |
| CVE-2006-5983 | Multiple cross-site scripting (XSS) vulnerabilities in JBMC Software DirectAdmin 1.28.1 allow remote... | E | |
| CVE-2006-5984 | Multiple cross-site scripting (XSS) vulnerabilities in Helm Web Hosting Control Panel 3.2.10 allow r... | | |
| CVE-2006-5985 | Multiple cross-site scripting (XSS) vulnerabilities in admin/options.php in Extreme CMS 0.9, and pos... | | |
| CVE-2006-5986 | admin/options.php in Extreme CMS 0.9, and possibly earlier, does not require authentication, which m... | | |
| CVE-2006-5987 | SQL injection vulnerability in default.asp in ASPintranet, possibly 1.2, allows remote attackers to ... | | |
| CVE-2006-5988 | Unspecified vulnerability in Windows 2000 Advanced Server SP4 running Active Directory allows remote... | | |
| CVE-2006-5989 | Off-by-one error in the der_get_oid function in mod_auth_kerb 5.0 allows remote attackers to cause a... | | |
| CVE-2006-5990 | VMWare VirtualCenter client 2.x before 2.0.1 Patch 1 (Build 33643) and 1.4.x before 1.4.1 Patch 1 (B... | S | |
| CVE-2006-5991 | Multiple SQL injection vulnerabilities in wwweb concepts CactuShop allow remote attackers to execute... | E | |
| CVE-2006-5992 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5993 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5994 | Unspecified vulnerability in Microsoft Word 2000 and 2002, Office Word and Word Viewer 2003, Word 20... | | |
| CVE-2006-5995 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5996 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5997 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5998 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2006-5999 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R |