2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1418 | — | — | 1.8% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in WPKontakt 3.0.1 and earlier allows remote attackers to inject arbitrary web ... |
| CVE-2004-1419 | — | — | 2.4% | Dec 31, 2004 | PHP remote file inclusion vulnerability in ZeroBoard 4.1pl4 and earlier allows remote attackers to execute arbitrary PHP... |
| CVE-2004-0090 | — | — | 1.7% | Dec 31, 2004 | Unknown vulnerability in Windows File Sharing for Mac OS X 10.1.5 through 10.3.2 does not "shutdown properly," which has... |
| CVE-2004-1420 | — | — | 4.0% | Dec 31, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in header.php in WHM AutoPilot 2.4.6.5 and earlier allow remote atta... |
| CVE-2004-1421 | — | — | 4.2% | Dec 31, 2004 | Multiple PHP remote file inclusion vulnerabilities (1) step_one.php, (2) step_one_tables.php, (3) step_two_tables.php in... |
| CVE-2004-0979 | — | — | 4.2% | Dec 31, 2004 | Internet Explorer on Windows XP does not properly modify the "Drag and Drop or copy and paste files" setting when the us... |
| CVE-2004-1405 | — | — | 5.2% | Dec 31, 2004 | MediaWiki 1.3.8 and earlier, when used with Apache mod_mime, does not properly handle files with two file extensions, su... |
| CVE-2004-0638 | — | — | 6.6% | Dec 31, 2004 | Buffer overflow in the KSDWRTB function in the dbms_system package (dbms_system.ksdwrt) for Oracle 9i Database Server Re... |
| CVE-2004-0325 | — | — | 3.0% | Dec 31, 2004 | TYPSoft FTP Server 1.10 allows remote authenticated users to cause a denial of service (CPU consumption) via "//../" arg... |
| CVE-2004-1406 | — | — | 2.4% | Dec 31, 2004 | SQL injection vulnerability in ikonboard.cgi in Ikonboard 3.1.0 through 3.1.3 allows remote attackers to inject arbitrar... |
| CVE-2004-1200 | — | — | 2.2% | Dec 31, 2004 | Firefox and Mozilla allow remote attackers to cause a denial of service (application crash from memory consumption), as ... |
| CVE-2004-0323 | — | — | 4.1% | Dec 31, 2004 | Multiple SQL injection vulnerabilities in XMB 1.8 Final SP2 allow remote attackers to inject arbitrary SQL and gain priv... |
| CVE-2004-1198 | — | — | 1.7% | Dec 31, 2004 | Microsoft Internet Explorer allows remote attackers to cause a denial of service (application crash from memory consumpt... |
| CVE-2004-0817 | — | — | 4.9% | Dec 31, 2004 | Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via... |
| CVE-2004-1417 | — | — | 1.9% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in login.php in PsychoStats 2.2.4 Beta and earlier allows remote attackers to i... |
| CVE-2004-1431 | — | — | 1.5% | Dec 31, 2004 | FormMail.php 5.0, and possibly other versions, allows remote attackers to read arbitrary files via a full pathname in th... |
| CVE-2004-1189 | — | — | 0.7% | Dec 31, 2004 | The add_to_history function in svr_principal.c in libkadm5srv for MIT Kerberos 5 (krb5) up to 1.3.5, when performing a p... |
| CVE-2004-1394 | — | — | 0.3% | Dec 31, 2004 | The pfexec function for Sun Solaris 8 and 9 does not properly handle when a custom profile contains an invalid entry in ... |
| CVE-2004-1186 | — | — | 4.0% | Dec 31, 2004 | Multiple buffer overflows in enscript 1.6.3 allow remote attackers or local users to cause a denial of service (applicat... |
| CVE-2004-1414 | — | — | 1.3% | Dec 31, 2004 | Gadu-Gadu 6.1 build 156 allows remote attackers to cause a denial of service (application hang) via a message that conta... |
| CVE-2004-1049 | — | — | 29.7% | Dec 31, 2004 | Integer overflow in the LoadImage API of the USER32 Lib for Microsoft Windows allows remote attackers to execute arbitra... |
| CVE-2004-1182 | — | — | 1.8% | Dec 31, 2004 | hfaxd in HylaFAX before 4.2.1, when installed with a "weak" hosts.hfaxd file, allows remote attackers to authenticate an... |
| CVE-2004-0806 | — | — | 1.7% | Dec 31, 2004 | cdrecord in the cdrtools package before 2.01, when installed setuid root, does not properly drop privileges before execu... |
| CVE-2004-1179 | — | — | 0.4% | Dec 31, 2004 | The debstd script in debmake 3.6.x before 3.6.10 and 3.7.x before 3.7.7 allows local users to overwrite arbitrary files ... |
| CVE-2004-0919 | — | — | 0.4% | Dec 31, 2004 | The syscons CONS_SCRSHOT ioctl in FreeBSD 5.x allows local users to read arbitrary kernel memory via (1) negative coordi... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now