2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1461 | — | — | 1.7% | Dec 31, 2004 | Cisco Secure Access Control Server (ACS) 3.2(3) and earlier spawns a separate unauthenticated TCP connection on a random... |
| CVE-2004-1462 | — | — | 1.6% | Dec 31, 2004 | Unknown vulnerability in MoinMoin 1.2.2 and earlier allows remote attackers to gain unauthorized access to administrator... |
| CVE-2004-1470 | — | — | 2.4% | Dec 31, 2004 | CRLF injection vulnerability in SnipSnap 0.5.2a, and other versions before 1.0b1, allows remote attackers to perform HTT... |
| CVE-2004-1730 | — | — | 1.4% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in Mantis bugtracker allows remote attackers to inject arbitrary web script or ... |
| CVE-2004-0813 | — | — | 0.4% | Dec 31, 2004 | Unknown vulnerability in the SG_IO functionality in ide-cd allows local users to bypass read-only access and perform una... |
| CVE-2004-1146 | — | — | 1.4% | Dec 31, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in (1) main.c and (2) login.c for CVSTrac before 1.1.5 allow remote ... |
| CVE-2004-1050 | — | — | 67.1% | Dec 31, 2004 | Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or ... |
| CVE-2004-0817 | — | — | 4.9% | Dec 31, 2004 | Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via... |
| CVE-2004-1425 | — | — | 1.8% | Dec 31, 2004 | Directory traversal vulnerability in file.php in Moodle 1.4.2 and earlier allows remote attackers to read arbitrary sess... |
| CVE-2004-1141 | — | — | 2.5% | Dec 31, 2004 | The HTTP dissector in Ethereal 0.10.1 through 0.10.7 allows remote attackers to cause a denial of service (application c... |
| CVE-2004-1463 | — | — | 2.3% | Dec 31, 2004 | Unknown vulnerability in the PageEditor in MoinMoin 1.2.2 and earlier, related to Access Control Lists (ACL), has unknow... |
| CVE-2004-0821 | — | — | 0.4% | Dec 31, 2004 | The CFPlugIn in Core Foundation framework in Mac OS X allows user supplied libraries to be loaded, which could allow loc... |
| CVE-2004-1734 | — | — | 1.7% | Dec 31, 2004 | PHP remote file inclusion vulnerability in Mantis 0.19.0a allows remote attackers to execute arbitrary PHP code by modif... |
| CVE-2004-1788 | — | — | 2.5% | Dec 31, 2004 | ASP-Nuke 1.3 and earlier places user credentials under the web document root with insufficient access control, which all... |
| CVE-2004-1848 | — | — | 8.1% | Dec 31, 2004 | Ipswitch WS_FTP Server 4.0.2 allows remote attackers to cause a denial of service (disk consumption) and bypass file siz... |
| CVE-2004-1457 | — | — | 2.1% | Dec 31, 2004 | The Virtual Private Network (VPN) capability in Novell Bordermanager 3.8 allows remote attackers to cause a denial of se... |
| CVE-2004-1520 | — | — | 88.5% | Dec 31, 2004 | Stack-based buffer overflow in IPSwitch IMail 8.13 allows remote authenticated users to execute arbitrary code via a lon... |
| CVE-2004-1458 | — | — | 1.8% | Dec 31, 2004 | The CSAdmin web administration interface for Cisco Secure Access Control Server (ACS) 3.2(2) build 15 allows remote atta... |
| CVE-2004-1459 | — | — | 1.8% | Dec 31, 2004 | Cisco Secure Access Control Server (ACS) 3.2, when configured as a Light Extensible Authentication Protocol (LEAP) RADIU... |
| CVE-2004-1589 | — | — | 1.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in GoSmart Message Board allows remote attackers to execute inject web script o... |
| CVE-2004-0979 | — | — | 4.2% | Dec 31, 2004 | Internet Explorer on Windows XP does not properly modify the "Drag and Drop or copy and paste files" setting when the us... |
| CVE-2004-1423 | — | — | 15.5% | Dec 31, 2004 | Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar before 0.10.1, as used in Commonwealth o... |
| CVE-2004-1418 | — | — | 1.8% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in WPKontakt 3.0.1 and earlier allows remote attackers to inject arbitrary web ... |
| CVE-2004-1456 | — | — | 14.0% | Dec 31, 2004 | filediff in CVStrac allows remote attackers to execute arbitrary commands via shell metacharacters in rcsinfo. |
| CVE-2004-1422 | — | — | 7.9% | Dec 31, 2004 | WHM AutoPilot 2.4.6.5 and earlier allows remote attackers to gain sensitive information via phpinfo, which reveals php s... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now