2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1463 | — | — | 2.3% | Dec 31, 2004 | Unknown vulnerability in the PageEditor in MoinMoin 1.2.2 and earlier, related to Access Control Lists (ACL), has unknow... |
| CVE-2004-1589 | — | — | 1.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in GoSmart Message Board allows remote attackers to execute inject web script o... |
| CVE-2004-1953 | — | — | 3.3% | Dec 31, 2004 | phProfession 2.5 allows remote attackers to gain sensitive information via a direct HTTP request to upload.php, which re... |
| CVE-2004-2137 | — | — | 26.1% | Dec 31, 2004 | Outlook Express 6.0, when sending multipart e-mail messages using the "Break apart messages larger than" setting, leaks ... |
| CVE-2004-1582 | — | — | 1.7% | Dec 31, 2004 | PHP remote file inclusion vulnerability in BlackBoard 1.5.1 allows remote attackers to execute arbitrary PHP code by mod... |
| CVE-2004-1584 | — | — | 11.2% | Dec 31, 2004 | CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows remote attackers to perform HTTP Response Splitting... |
| CVE-2004-1583 | — | — | 1.6% | Dec 31, 2004 | Directory traversal vulnerability in the FTP server in TriDComm 1.3 and earlier allows remote attackers to read or write... |
| CVE-2004-1955 | — | — | 1.3% | Dec 31, 2004 | SQL injection vulnerability in modules.php in phProfession 2.5 allows remote attackers to execute arbitrary SQL code via... |
| CVE-2004-1962 | — | — | 1.2% | Dec 31, 2004 | SQL injection vulnerability in index.php in Protector System 1.15b1 allows remote attackers to bypass SQL injection filt... |
| CVE-2004-1534 | — | — | 1.8% | Dec 31, 2004 | ZoneAlarm and ZoneAlarm Pro before 5.5.062, with ad-blocking enabled, allows remote web sites to cause a denial of servi... |
| CVE-2004-1581 | — | — | 1.2% | Dec 31, 2004 | BlackBoard 1.5.1 allows remote attackers to gain sensitive information via a direct request to (1) checkdb.inc.php, (2) ... |
| CVE-2004-1498 | — | — | 1.2% | Dec 31, 2004 | SQL injection vulnerability in the compose message form in HELM 3.1.19 and earlier allows remote attackers to execute ar... |
| CVE-2004-1585 | — | — | 3.1% | Dec 31, 2004 | Flash Messaging 5.2.0g (rev 1.1.2) and earlier allows remote attackers to cause a denial of service (application crash) ... |
| CVE-2004-2012 | — | — | 0.9% | Dec 31, 2004 | The systrace_exit function in the systrace utility for NetBSD-current and 2.0 before April 16, 2004, and certain FreeBSD... |
| CVE-2004-1578 | — | — | 1.1% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in index.php in Invision Power Board 2.0.0 allows remote attackers to execute a... |
| CVE-2004-0943 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. ... |
| CVE-2004-1579 | — | — | 1.2% | Dec 31, 2004 | index.php in CubeCart 2.0.1 allows remote attackers to gain sensitive information via an HTTP request with an invalid ca... |
| CVE-2004-2013 | HIGH | 7.8 | 0.6% | Dec 31, 2004 | Integer overflow in the SCTP_SOCKOPT_DEBUG_NAME SCTP socket option in socket.c in the Linux kernel 2.4.25 and earlier al... |
| CVE-2004-0567 | — | — | 72.3% | Dec 31, 2004 | The Windows Internet Naming Service (WINS) in Windows NT Server 4.0 SP 6a, NT Terminal Server 4.0 SP 6, Windows 2000 Ser... |
| CVE-2004-1480 | — | — | 2.6% | Dec 31, 2004 | Unknown vulnerability in the management station in HP StorageWorks Command View XP 1.8B and earlier allows remote attack... |
| CVE-2004-1539 | — | — | 3.1% | Dec 31, 2004 | Halo: Combat Evolved 1.05 and earlier allows remote game servers to cause a denial of service (client crash) via a long ... |
| CVE-2004-1580 | — | — | 2.4% | Dec 31, 2004 | SQL injection vulnerability in index.php in CubeCart 2.0.1 allows remote attackers to execute arbitrary SQL commands via... |
| CVE-2004-1586 | — | — | 0.8% | Dec 31, 2004 | Flash Messaging clients can ignore disconnecting commands such as "shutdown" from the Flash Messaging Server 5.2.0g (rev... |
| CVE-2004-2045 | — | — | 3.1% | Dec 31, 2004 | The HTTP administration interface on Conceptronic CADSLR1 ADSL router running firmware 3.04n allows remote attackers to ... |
| CVE-2004-2128 | — | — | 2.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in BRS WebWeaver 1.07 allows remote attackers to execute arbitrary script as ot... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now