2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1851 | — | — | 1.1% | Mar 24, 2004 | Dameware Mini Remote Control 4.1.0.0 uses insufficiently random data to create the encryption key, which makes it easier... |
| CVE-2004-1849 | — | — | 1.4% | Mar 24, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in cPanel 9.1.0 allow remote attackers to inject arbitrary web scrip... |
| CVE-2004-2037 | — | — | 6.9% | Mar 24, 2004 | Buffer overflow in Mollensoft Lightweight FTP Server 3.6 allows remote authenticated users to cause a denial of service ... |
| CVE-2004-1855 | — | — | 2.6% | Mar 23, 2004 | Dark Age of Camelot before 1.68 live patch does not sign the RSA public key, which could allow remote malicious servers ... |
| CVE-2004-1852 | — | — | 0.8% | Mar 23, 2004 | DameWare Mini Remote Control 3.x before 3.74 and 4.x before 4.2 transmits the Blowfish encryption key in plaintext, whic... |
| CVE-2004-1850 | — | — | 1.7% | Mar 23, 2004 | The Rage 1.01 and earlier allows remote attackers to cause a denial of service (infinite loop) via a TCP packet with the... |
| CVE-2004-1884 | — | — | 5.8% | Mar 23, 2004 | Ipswitch WS_FTP Server 4.0.2 has a backdoor XXSESS_MGRYY username with a default password, which allows remote attackers... |
| CVE-2004-1886 | — | — | — | Mar 23, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2004-1848. Reason: This candidate is a duplicate of... |
| CVE-2004-1840 | — | — | 1.2% | Mar 22, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in MS Analysis module 2.0 for PHP-Nuke allows remote attackers to in... |
| CVE-2004-1839 | — | — | 1.2% | Mar 22, 2004 | MS Analysis module 2.0 for PHP-Nuke allows remote attackers to obtain sensitive information via a direct request to (1) ... |
| CVE-2004-1838 | — | — | 3.7% | Mar 22, 2004 | Directory traversal vulnerability in xweb 1.0 allows remote attackers to download arbitrary files via a .. (dot dot) in ... |
| CVE-2004-1846 | — | — | 1.7% | Mar 20, 2004 | Multiple SQL injection vulnerabilities in News Manager Lite 2.5 allow remote attackers to execute arbitrary SQL code via... |
| CVE-2004-1843 | — | — | 1.2% | Mar 20, 2004 | SQL injection vulnerability in Member Management System 2.1 allows remote attackers to execute arbitrary SQL via the ID ... |
| CVE-2004-1847 | — | — | 2.9% | Mar 20, 2004 | News Manager Lite 2.5 allows remote attackers to bypass authentication and gain administrator privileges by setting the ... |
| CVE-2004-1833 | — | — | 2.1% | Mar 20, 2004 | The admin.ib file in Borland Interbase 7.1 for Linux has default world writable permissions, which allows local users to... |
| CVE-2004-1834 | — | — | 3.5% | Mar 20, 2004 | mod_disk_cache in Apache 2.0 through 2.0.49 stores client headers, including authentication information, on the hard dis... |
| CVE-2004-1853 | — | — | 2.2% | Mar 19, 2004 | Buffer overflow in Terminator 3: War of the Machines 1.0 allows remote attackers to cause a denial of service via a long... |
| CVE-2004-1830 | — | — | 2.8% | Mar 18, 2004 | error.php in Error Manager 2.1 for PHP-Nuke 6.0 allows remote attackers to obtain sensitive information via an invalid (... |
| CVE-2004-1829 | — | — | 1.9% | Mar 18, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in error.php in Gijza.net Error Manager 2.1 for PHP-Nuke 6.0 allow r... |
| CVE-2004-1826 | — | — | 1.2% | Mar 16, 2004 | SQL injection vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and earlier allows remote attackers to ex... |
| CVE-2004-1825 | — | — | 2.0% | Mar 16, 2004 | Cross-site scripting (XSS) vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and earlier allows remote at... |
| CVE-2004-1818 | — | — | 2.0% | Mar 15, 2004 | Cross-site scripting (XSS) vulnerability in nmimage.php in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attac... |
| CVE-2004-1815 | — | — | 1.6% | Mar 15, 2004 | Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as... |
| CVE-2004-1816 | — | — | 2.6% | Mar 15, 2004 | Unknown vulnerability in Sun Java System Application Server 7.0 Update 2 and earlier, when a SOAP web service expects an... |
| CVE-2004-1817 | — | — | 1.7% | Mar 15, 2004 | Cross-site scripting (XSS) vulnerability in modules.php in Php-Nuke 7.1.0 allows remote attackers to inject arbitrary we... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now