2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2004-1851Dameware Mini Remote Control 4.1.0.0 uses insufficiently random data to create the encryption key, which makes it easier...
CVE-2004-1849Multiple cross-site scripting (XSS) vulnerabilities in cPanel 9.1.0 allow remote attackers to inject arbitrary web scrip...
CVE-2004-2037Buffer overflow in Mollensoft Lightweight FTP Server 3.6 allows remote authenticated users to cause a denial of service ...
CVE-2004-1855Dark Age of Camelot before 1.68 live patch does not sign the RSA public key, which could allow remote malicious servers ...
CVE-2004-1852DameWare Mini Remote Control 3.x before 3.74 and 4.x before 4.2 transmits the Blowfish encryption key in plaintext, whic...
CVE-2004-1850The Rage 1.01 and earlier allows remote attackers to cause a denial of service (infinite loop) via a TCP packet with the...
CVE-2004-1884Ipswitch WS_FTP Server 4.0.2 has a backdoor XXSESS_MGRYY username with a default password, which allows remote attackers...
CVE-2004-1886Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2004-1848. Reason: This candidate is a duplicate of...
CVE-2004-1840Multiple cross-site scripting (XSS) vulnerabilities in MS Analysis module 2.0 for PHP-Nuke allows remote attackers to in...
CVE-2004-1839MS Analysis module 2.0 for PHP-Nuke allows remote attackers to obtain sensitive information via a direct request to (1) ...
CVE-2004-1838Directory traversal vulnerability in xweb 1.0 allows remote attackers to download arbitrary files via a .. (dot dot) in ...
CVE-2004-1846Multiple SQL injection vulnerabilities in News Manager Lite 2.5 allow remote attackers to execute arbitrary SQL code via...
CVE-2004-1843SQL injection vulnerability in Member Management System 2.1 allows remote attackers to execute arbitrary SQL via the ID ...
CVE-2004-1847News Manager Lite 2.5 allows remote attackers to bypass authentication and gain administrator privileges by setting the ...
CVE-2004-1833The admin.ib file in Borland Interbase 7.1 for Linux has default world writable permissions, which allows local users to...
CVE-2004-1834mod_disk_cache in Apache 2.0 through 2.0.49 stores client headers, including authentication information, on the hard dis...
CVE-2004-1853Buffer overflow in Terminator 3: War of the Machines 1.0 allows remote attackers to cause a denial of service via a long...
CVE-2004-1830error.php in Error Manager 2.1 for PHP-Nuke 6.0 allows remote attackers to obtain sensitive information via an invalid (...
CVE-2004-1829Multiple cross-site scripting (XSS) vulnerabilities in error.php in Gijza.net Error Manager 2.1 for PHP-Nuke 6.0 allow r...
CVE-2004-1826SQL injection vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and earlier allows remote attackers to ex...
CVE-2004-1825Cross-site scripting (XSS) vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and earlier allows remote at...
CVE-2004-1818Cross-site scripting (XSS) vulnerability in nmimage.php in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attac...
CVE-2004-1815Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as...
CVE-2004-1816Unknown vulnerability in Sun Java System Application Server 7.0 Update 2 and earlier, when a SOAP web service expects an...
CVE-2004-1817Cross-site scripting (XSS) vulnerability in modules.php in Php-Nuke 7.1.0 allows remote attackers to inject arbitrary we...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now