2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2004-1821SQL injection vulnerability in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to gain privileges or p...
CVE-2004-1820PHP remote file inclusion vulnerability in displaycategory.php in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remot...
CVE-2004-18194nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to obtain sensitive information via a direct request t...
CVE-2004-1827Cross-site scripting (XSS) vulnerability in YaBB 1 Gold(SP1.3) and YaBB SE 1.5.1 Final allows remote attackers to inject...
CVE-2004-1822Multiple cross-site scripting (XSS) vulnerabilities in Phorum 3.1 through 5.0.3 beta allow remote attackers to inject ar...
CVE-2004-0159Format string vulnerability in hsftp 1.11 allows remote authenticated users to cause a denial of service and possibly ex...
CVE-2004-0187Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2004-0185. Reason: This candidate is a reservation ...
CVE-2004-0110Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remot...
CVE-2004-0094Integer signedness errors in XFree86 4.1.0 allow remote attackers to cause a denial of service and possibly execute arbi...
CVE-2004-0093XFree86 4.1.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an out-of-bou...
CVE-2004-0075The Vicam USB driver in Linux before 2.4.25 does not use the copy_from_user function when copying data from userspace to...
CVE-2004-0193Heap-based buffer overflow in the ISS Protocol Analysis Module (PAM), as used in certain versions of RealSecure Network ...
CVE-2004-0192Cross-site scripting (XSS) vulnerability in the Management Service for Symantec Gateway Security 2.0 allows remote attac...
CVE-2004-0191Mozilla before 1.4.2 executes Javascript events in the context of a new page while it is being loaded, allowing it to in...
CVE-2004-0190Symantec FireWall/VPN Appliance model 200 records a cleartext password for the password administration page, which may b...
CVE-2004-0189The "%xx" URL decoding function in Squid 2.5STABLE4 and earlier allows remote attackers to bypass url_regex ACLs via a U...
CVE-2004-0188Heap-based buffer overflow in Calife 2.8.5 and earlier may allow local users to execute arbitrary code via a long passwo...
CVE-2004-0186smbmnt in Samba 2.x and 3.x on Linux 2.6, when installed setuid, allows local users to gain root privileges by mounting ...
CVE-2004-0185Buffer overflow in the skey_challenge function in ftpd.c for wu-ftp daemon (wu-ftpd) 2.6.2 allows remote attackers to ca...
CVE-2004-0172Heap-based buffer overflow in the search_for_command function of ltrace 0.3.10, if it is installed setuid, could allow l...
CVE-2004-0171FreeBSD 5.1 and earlier, and Mac OS X before 10.3.4, allows remote attackers to cause a denial of service (resource exha...
CVE-2004-0169QuickTime Streaming Server in MacOS X 10.2.8 and 10.3.2 allows remote attackers to cause a denial of service (crash) via...
CVE-2004-0168Unknown vulnerability in CoreFoundation for Mac OS X 10.3.2, related to "notification logging."
CVE-2004-0167DiskArbitration in Mac OS X 10.2.8 and 10.3.2 does not properly initialize writeable removable media.
CVE-2004-0166Unknown vulnerability in Safari web browser for Mac OS X 10.2.8 related to "the display of URLs in the status bar."

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now