2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1104 | — | — | 35.3% | Dec 31, 2004 | Microsoft Internet Explorer 6.0 SP2 allows remote attackers to spoof a legitimate URL in the status bar and conduct a ph... |
| CVE-2004-1491 | — | — | 12.6% | Dec 31, 2004 | Opera 7.54 and earlier uses kfmclient exec to handle unknown MIME types, which allows remote attackers to execute arbitr... |
| CVE-2004-1557 | — | — | 1.5% | Dec 31, 2004 | MyWebServer 1.0.3 allows remote attackers to bypass authentication, modify configuration, and read arbitrary files via a... |
| CVE-2004-1892 | — | — | 10.0% | Dec 31, 2004 | Stack-based buffer overflow in DecodeBase16 function, as used in the (1) IRC module and (2) web server in eMule 0.42d, a... |
| CVE-2004-2057 | — | — | 1.5% | Dec 31, 2004 | SQL injection vulnerability in ASPRunner 2.4 allows remote attackers to execute arbitrary SQL statements. |
| CVE-2004-0951 | — | — | 4.5% | Dec 31, 2004 | The make_recovery command for the TFTP server in HP Ignite-UX before C.6.2.241 makes a copy of the password file in the ... |
| CVE-2004-1532 | — | — | 1.5% | Dec 31, 2004 | AppServ 2.5.x and earlier installs a default username and password, which allows remote attackers to gain access. |
| CVE-2004-1533 | — | — | 7.5% | Dec 31, 2004 | Buffer overflow in pop3svr.exe for DMS POP3 1.5.3.27 and earlier allows remote attackers to cause a denial of service (s... |
| CVE-2004-1536 | — | — | 2.4% | Dec 31, 2004 | SQL injection vulnerability in index.php in the ibProArcade module for Invision Power Board (IPB) 1.x and 2.x allows rem... |
| CVE-2004-1558 | — | — | 71.1% | Dec 31, 2004 | Multiple stack-based buffer overflows in YPOPs! (aka YahooPOPS) 0.4 through 0.6 allow remote attackers to cause a denial... |
| CVE-2004-1484 | — | — | 7.3% | Dec 31, 2004 | Format string vulnerability in the _msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy cli... |
| CVE-2004-1531 | — | — | 1.3% | Dec 31, 2004 | SQL injection vulnerability in post.php in Invision Power Board (IPB) 2.0.0 through 2.0.2 allows remote attackers to exe... |
| CVE-2004-1448 | — | — | 1.7% | Dec 31, 2004 | Jetbox One 2.0.8 and possibly other versions allow remote attackers with Author privileges in the IMAGES module to uploa... |
| CVE-2004-1534 | — | — | 1.8% | Dec 31, 2004 | ZoneAlarm and ZoneAlarm Pro before 5.5.062, with ad-blocking enabled, allows remote web sites to cause a denial of servi... |
| CVE-2004-1836 | — | — | 4.4% | Dec 31, 2004 | SQL injection vulnerability in index.php in Invision Power Top Site List 1.1 RC 2 and earlier allows remote attackers to... |
| CVE-2004-1528 | — | — | 1.5% | Dec 31, 2004 | The Event Calendar module 2.13 for PHP-Nuke allows remote attackers to gain sensitive information via an HTTP request to... |
| CVE-2004-1399 | — | — | 1.7% | Dec 31, 2004 | Directory traversal vulnerability in the Attachment module 2.3.10 and earlier for phpBB allows remote attackers to read ... |
| CVE-2004-1529 | — | — | 1.4% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in the Event Calendar module 2.13 for PHP-Nuke allows remote attackers to execu... |
| CVE-2004-0567 | — | — | 72.3% | Dec 31, 2004 | The Windows Internet Naming Service (WINS) in Windows NT Server 4.0 SP 6a, NT Terminal Server 4.0 SP 6, Windows 2000 Ser... |
| CVE-2004-1430 | — | — | 1.3% | Dec 31, 2004 | SQL injection vulnerability in the show_stats module in Arcade.php in IbProArcade allows remote attackers to execute arb... |
| CVE-2004-1489 | — | — | 2.0% | Dec 31, 2004 | Opera 7.54 and earlier does not properly limit an applet's access to internal Java packages from Sun, which allows remot... |
| CVE-2004-1530 | — | — | 1.3% | Dec 31, 2004 | SQL injection vulnerability in the Event Calendar module 2.13 for PHP-Nuke allows remote attackers to execute arbitrary ... |
| CVE-2004-1535 | — | — | 6.3% | Dec 31, 2004 | PHP remote file inclusion vulnerability in admin_cash.php for the Cash Mod module for phpBB allows remote attackers to e... |
| CVE-2004-1867 | — | — | 1.7% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in guest.cgi in Fresh Guest Book allows remote attackers to inject arbitrary we... |
| CVE-2004-1893 | — | — | 2.4% | Dec 31, 2004 | Dreamweaver MX, when "Using Driver On Testing Server" or "Using DSN on Testing Server" is selected, uploads the mmhttpdb... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now