2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

CVE IDSeverityCVSSDescription
CVE-2004-1886Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2004-1848. Reason: This candidate is a duplicate of...
CVE-2004-1838Directory traversal vulnerability in xweb 1.0 allows remote attackers to download arbitrary files via a .. (dot dot) in ...
CVE-2004-1839MS Analysis module 2.0 for PHP-Nuke allows remote attackers to obtain sensitive information via a direct request to (1) ...
CVE-2004-1840Multiple cross-site scripting (XSS) vulnerabilities in MS Analysis module 2.0 for PHP-Nuke allows remote attackers to in...
CVE-2004-1834mod_disk_cache in Apache 2.0 through 2.0.49 stores client headers, including authentication information, on the hard dis...
CVE-2004-1847News Manager Lite 2.5 allows remote attackers to bypass authentication and gain administrator privileges by setting the ...
CVE-2004-1846Multiple SQL injection vulnerabilities in News Manager Lite 2.5 allow remote attackers to execute arbitrary SQL code via...
CVE-2004-1843SQL injection vulnerability in Member Management System 2.1 allows remote attackers to execute arbitrary SQL via the ID ...
CVE-2004-1833The admin.ib file in Borland Interbase 7.1 for Linux has default world writable permissions, which allows local users to...
CVE-2004-1853Buffer overflow in Terminator 3: War of the Machines 1.0 allows remote attackers to cause a denial of service via a long...
CVE-2004-1829Multiple cross-site scripting (XSS) vulnerabilities in error.php in Gijza.net Error Manager 2.1 for PHP-Nuke 6.0 allow r...
CVE-2004-1830error.php in Error Manager 2.1 for PHP-Nuke 6.0 allows remote attackers to obtain sensitive information via an invalid (...
CVE-2004-1825Cross-site scripting (XSS) vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and earlier allows remote at...
CVE-2004-1826SQL injection vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and earlier allows remote attackers to ex...
CVE-2004-1822Multiple cross-site scripting (XSS) vulnerabilities in Phorum 3.1 through 5.0.3 beta allow remote attackers to inject ar...
CVE-2004-1821SQL injection vulnerability in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to gain privileges or p...
CVE-2004-1820PHP remote file inclusion vulnerability in displaycategory.php in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remot...
CVE-2004-18194nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to obtain sensitive information via a direct request t...
CVE-2004-1818Cross-site scripting (XSS) vulnerability in nmimage.php in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attac...
CVE-2004-1817Cross-site scripting (XSS) vulnerability in modules.php in Php-Nuke 7.1.0 allows remote attackers to inject arbitrary we...
CVE-2004-1816Unknown vulnerability in Sun Java System Application Server 7.0 Update 2 and earlier, when a SOAP web service expects an...
CVE-2004-1815Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as...
CVE-2004-1827Cross-site scripting (XSS) vulnerability in YaBB 1 Gold(SP1.3) and YaBB SE 1.5.1 Final allows remote attackers to inject...
CVE-2004-0094Integer signedness errors in XFree86 4.1.0 allow remote attackers to cause a denial of service and possibly execute arbi...
CVE-2004-0075The Vicam USB driver in Linux before 2.4.25 does not use the copy_from_user function when copying data from userspace to...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now