month report
December 2006
Data as of Jun 4, 2026, 13:24 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →
December 2006 closed with 676 published CVEs — -2.5% YoY . 61 criticals, microsoft led volume, mostly via windows xp. Biggest breakout: xerox at ×5.5 their 12-month median. Top weakness class — CWE-119 (18 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
676
— MoM-2.5% YoY
Severity mix
61 / 271
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
0.3%
2 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
7014.7
n=2
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
—
n=0
Weakness × Vendor
What's spreading where in December 2006
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
Breakout vendors
CVE count ≥3× their own 12-period median.
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #4enthrallweb11 CVE
- #6mxbb10 CVE
- #10scriptphp8 CVE
- #12torrentflux8 CVE
- #15avg6 CVE
- #17chetcpasswd6 CVE
- #18comodo6 CVE
- #20filseclab6 CVE
- #21infoprocess6 CVE
- #25soft4ever6 CVE
Top vendors
Ranked by distinct CVE count this period.
- 30 CVE6 critCVSS 6.9PoC 5windows xp (9) · windows 2000 (4) · internet explorer (4)
- 22 CVE4 critCVSS 6.8×5.5workcentre (15) · workcentre 232 (7) · workcentre 238 (7)
- 12 CVE1 critCVSS 6.6firefox (11) · seamonkey (9) · thunderbird (8)
- 11 CVECVSS 6.3NEWPoC 9eclassifieds (2) · ehomes (2) · epages (1)
- 11 CVE4 critCVSS 6.9×5.5netmail (4) · client (3) · zenworks patch management server (1)
- 10 CVE2 critCVSS 7.8NEWPoC 10kb mods (2) · mxbb (1) · activity games module (1)
- 10 CVE3 critCVSS 8.6×5.0sygate personal firewall (6) · veritas netbackup client (3) · veritas netbackup enterprise server (3)
- 8 CVE2 critCVSS 6.8tivoli storage manager (2) · websphere application server (2) · websphere host on-demand (1)
- 8 CVE1 critCVSS 4.0netbsd (8)
- 8 CVECVSS 6.8NEWPoC 1pronews (3) · annoncescripthp (3) · messageriescripthp (2)
- 8 CVE2 critCVSS 6.4jre (4) · jdk (3) · sdk (3)
- 8 CVECVSS 5.9NEWPoC 7torrentflux (8) · torrentflux-b4rt (1)
- 7 CVECVSS 7.1chatroom module (2) · help tip module (2) · drupal mysite (1)
- 7 CVE1 critCVSS 7.5PoC 1land down under (5) · seditio (3)
- 6 CVECVSS 7.2NEWantivirus plus firewall (6)
- 6 CVE1 critCVSS 6.8PoC 1ubuntu linux (6)
- 6 CVECVSS 6.1NEWPoC 1chetcpasswd (6)
- 6 CVECVSS 7.2NEWcomodo personal firewall (6)
- 6 CVECVSS 5.7×4.0debian linux (6)
- 6 CVECVSS 7.2NEWpersonal firewall (6)
- 6 CVECVSS 7.2NEWantihook (6)
- 6 CVECVSS 6.5linux kernel (6)
- 6 CVE2 critCVSS 7.9mailenable enterprise (4) · mailenable professional (4) · mailenable (1)
- 6 CVECVSS 7.0PoC 3animated smiley generator (1) · ar memberscript (1) · blog cms (1)
- 6 CVECVSS 7.2NEWlook n stop (6)
- 5 CVE1 critCVSS 5.0PoC 1mac os x (4) · mac os x server (2) · safari (1)
- 5 CVE1 critCVSS 7.6PoC 1dupaypal (3) · dudirectory (2) · dunews (2)
- 4 CVE1 critCVSS 5.9PoC 1coldfusion (2) · download manager (1) · acrobat reader (1)
- 4 CVE2 critCVSS 8.2NEWalternc (4)
- 4 CVECVSS 6.7NEWPoC 3clickgallery (2) · clickcontact (1) · clickblog (1)
- 4 CVECVSS 7.2NEWPoC 3cwmexplorer (2) · cwmcounter (1) · cwmvote (1)
- 4 CVE1 critCVSS 5.1NEWwinamp web interface (4)
- 4 CVECVSS 5.7×4.0PoC 2kdegraphics (1) · koffice (1) · ksirc (1)
- 4 CVECVSS 7.5NEWPoC 3calendar mx basic (2) · mxmania file upload manager (1) · newsletter mx (1)
- 4 CVE2 critCVSS 7.9PoC 1opensuse (2) · suse linux enterprise (2)
- 4 CVECVSS 7.3NEWPoC 3user manager (4)
- 4 CVECVSS 6.9NEWvt-forum lite (3) · vt-forum (1)
- 4 CVECVSS 6.8debian gnu/linux (4)
- 3 CVE1 critCVSS 8.3NEWPoC 1at-9000 24 ethernetswitch (2) · at-tftp (1)
- 3 CVECVSS 6.3×3.0webhost directory (3)
- 3 CVECVSS 7.0PoC 3ofbiz (3) · opentaps (1)
- 3 CVECVSS 7.0NEW×3.0atmail webmail (2) · atmail webadmin (1)
- 3 CVECVSS 7.2×3.0brightstor arcserve backup (1) · brightstor enterprise backup (1) · cleverpath portal (1)
- 3 CVECVSS 6.4PoC 1access gateway (2) · presentation server client (1)
- 3 CVECVSS 5.0clamav (3)
- 3 CVECVSS 5.4PoC 1webhost manager (2) · cpanel (1)
- 3 CVECVSS 7.4NEWPoC 1genesistrader (3)
- 3 CVECVSS 5.5PoC 2gentoo linux (3)
- 3 CVECVSS 7.6laserjet 5000 (1) · ftp print server (1) · laserjet 5100 (1)
- 3 CVECVSS 5.5NEWPoC 3ixprim cms (3)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | microsoft | 30 | 6 | · | · | PoC 5 | windows xp (9) · windows 2000 (4) · internet explorer (4) | — | |
| 2 | xerox | 22 | 4 | · | · | ×5.5 | workcentre (15) · workcentre 232 (7) · workcentre 238 (7) | — | |
| 3 | mozilla | 12 | 1 | · | · | firefox (11) · seamonkey (9) · thunderbird (8) | — | ||
| 4 | enthrallweb | 11 | · | · | · | NEWPoC 9 | eclassifieds (2) · ehomes (2) · epages (1) | — | |
| 5 | novell | 11 | 4 | · | · | ×5.5 | netmail (4) · client (3) · zenworks patch management server (1) | — | |
| 6 | mxbb | 10 | 2 | · | · | NEWPoC 10 | kb mods (2) · mxbb (1) · activity games module (1) | — | |
| 7 | symantec | 10 | 3 | · | · | ×5.0 | sygate personal firewall (6) · veritas netbackup client (3) · veritas netbackup enterprise server (3) | — | |
| 8 | ibm | 8 | 2 | · | · | tivoli storage manager (2) · websphere application server (2) · websphere host on-demand (1) | — | ||
| 9 | netbsd | 8 | 1 | · | · | netbsd (8) | — | ||
| 10 | scriptphp | 8 | · | · | · | NEWPoC 1 | pronews (3) · annoncescripthp (3) · messageriescripthp (2) | — | |
| 11 | sun | 8 | 2 | · | · | jre (4) · jdk (3) · sdk (3) | — | ||
| 12 | torrentflux | 8 | · | · | · | NEWPoC 7 | torrentflux (8) · torrentflux-b4rt (1) | — | |
| 13 | drupal | 7 | · | · | · | chatroom module (2) · help tip module (2) · drupal mysite (1) | — | ||
| 14 | neocrome | 7 | 1 | · | · | PoC 1 | land down under (5) · seditio (3) | — | |
| 15 | avg | 6 | · | · | · | NEW | antivirus plus firewall (6) | — | |
| 16 | canonical | 6 | 1 | · | · | PoC 1 | ubuntu linux (6) | — | |
| 17 | chetcpasswd | 6 | · | · | · | NEWPoC 1 | chetcpasswd (6) | — | |
| 18 | comodo | 6 | · | · | · | NEW | comodo personal firewall (6) | — | |
| 19 | debian | 6 | · | · | · | ×4.0 | debian linux (6) | — | |
| 20 | filseclab | 6 | · | · | · | NEW | personal firewall (6) | — | |
| 21 | infoprocess | 6 | · | · | · | NEW | antihook (6) | — | |
| 22 | linux | 6 | · | · | · | linux kernel (6) | — | ||
| 23 | mailenable | 6 | 2 | · | · | mailenable enterprise (4) · mailenable professional (4) · mailenable (1) | — | ||
| 24 | php | 6 | · | · | · | PoC 3 | animated smiley generator (1) · ar memberscript (1) · blog cms (1) | — | |
| 25 | soft4ever | 6 | · | · | · | NEW | look n stop (6) | — | |
| 26 | apple | 5 | 1 | · | · | PoC 1 | mac os x (4) · mac os x server (2) · safari (1) | — | |
| 27 | duware | 5 | 1 | · | · | PoC 1 | dupaypal (3) · dudirectory (2) · dunews (2) | — | |
| 28 | adobe | 4 | 1 | · | · | PoC 1 | coldfusion (2) · download manager (1) · acrobat reader (1) | — | |
| 29 | alternc | 4 | 2 | · | · | NEW | alternc (4) | — | |
| 30 | clicktech | 4 | · | · | · | NEWPoC 3 | clickgallery (2) · clickcontact (1) · clickblog (1) | — | |
| 31 | cwm-design | 4 | · | · | · | NEWPoC 3 | cwmexplorer (2) · cwmcounter (1) · cwmvote (1) | — | |
| 32 | flippet.org | 4 | 1 | · | · | NEW | winamp web interface (4) | — | |
| 33 | kde | 4 | · | · | · | ×4.0PoC 2 | kdegraphics (1) · koffice (1) · ksirc (1) | — | |
| 34 | mxmania | 4 | · | · | · | NEWPoC 3 | calendar mx basic (2) · mxmania file upload manager (1) · newsletter mx (1) | — | |
| 35 | novell inc. | 4 | 2 | · | · | PoC 1 | opensuse (2) · suse linux enterprise (2) | — | |
| 36 | scriptmate | 4 | · | · | · | NEWPoC 3 | user manager (4) | — | |
| 37 | vt-forum | 4 | · | · | · | NEW | vt-forum lite (3) · vt-forum (1) | — | |
| 38 | сообщество свободного программного обеспечения | 4 | · | · | · | debian gnu/linux (4) | — | ||
| 39 | alliedtelesyn | 3 | 1 | · | · | NEWPoC 1 | at-9000 24 ethernetswitch (2) · at-tftp (1) | — | |
| 40 | alstrasoft | 3 | · | · | · | ×3.0 | webhost directory (3) | — | |
| 41 | apache | 3 | · | · | · | PoC 3 | ofbiz (3) · opentaps (1) | — | |
| 42 | atmail | 3 | · | · | · | NEW×3.0 | atmail webmail (2) · atmail webadmin (1) | — | |
| 43 | broadcom | 3 | · | · | · | ×3.0 | brightstor arcserve backup (1) · brightstor enterprise backup (1) · cleverpath portal (1) | — | |
| 44 | citrix | 3 | · | · | · | PoC 1 | access gateway (2) · presentation server client (1) | — | |
| 45 | clam anti-virus | 3 | · | · | · | clamav (3) | — | ||
| 46 | cpanel | 3 | · | · | · | PoC 1 | webhost manager (2) · cpanel (1) | — | |
| 47 | genesistrader | 3 | · | · | · | NEWPoC 1 | genesistrader (3) | — | |
| 48 | gentoo foundation inc. | 3 | · | · | · | PoC 2 | gentoo linux (3) | — | |
| 49 | hp | 3 | · | · | · | laserjet 5000 (1) · ftp print server (1) · laserjet 5100 (1) | — | ||
| 50 | ixprim | 3 | · | · | · | NEWPoC 3 | ixprim cms (3) | — |