2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-2010 | — | — | 2.6% | Dec 31, 2004 | PHP remote file inclusion vulnerability in index.php in phpShop 0.7.1 and earlier allows remote attackers to execute arb... |
| CVE-2004-2182 | — | — | 1.2% | Dec 31, 2004 | Session fixation vulnerability in Macromedia JRun 4.0 allows remote attackers to hijack user sessions by pre-setting the... |
| CVE-2004-1522 | — | — | 1.7% | Dec 31, 2004 | Format string vulnerability in Army Men RTS 1.0 allows remote attackers to cause a denial of service (application crash)... |
| CVE-2004-2181 | — | — | 1.1% | Dec 31, 2004 | Multiple SQL injection vulnerabilities in WowBB Forum 1.61 allow remote attackers to execute arbitrary SQL commands via ... |
| CVE-2004-1521 | — | — | 1.7% | Dec 31, 2004 | Eudora 6.2.0.14 does not issue a warning when a user forwards an e-mail message that contains base64 or quoted-printable... |
| CVE-2004-1423 | — | — | 15.5% | Dec 31, 2004 | Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar before 0.10.1, as used in Commonwealth o... |
| CVE-2004-1426 | — | — | 1.5% | Dec 31, 2004 | Directory traversal vulnerability in index.php in KorWeblog 1.6.2-cvs and earlier allows remote attackers to read arbitr... |
| CVE-2004-2011 | — | — | 7.4% | Dec 31, 2004 | msxml3.dll in Internet Explorer 6.0.2600.0 allows remote attackers to cause a denial of service (crash) via a single & (... |
| CVE-2004-1414 | — | — | 1.3% | Dec 31, 2004 | Gadu-Gadu 6.1 build 156 allows remote attackers to cause a denial of service (application hang) via a message that conta... |
| CVE-2004-1427 | — | — | 1.7% | Dec 31, 2004 | PHP remote file inclusion vulnerability in main.inc in KorWeblog 1.6.2-cvs and earlier allows remote attackers to execut... |
| CVE-2004-1422 | — | — | 7.9% | Dec 31, 2004 | WHM AutoPilot 2.4.6.5 and earlier allows remote attackers to gain sensitive information via phpinfo, which reveals php s... |
| CVE-2004-1434 | — | — | 3.3% | Dec 31, 2004 | Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.1(0) to 4.1(2), 4.5(x), 4.0(0) to 4.0(2)... |
| CVE-2004-2012 | — | — | 0.9% | Dec 31, 2004 | The systrace_exit function in the systrace utility for NetBSD-current and 2.0 before April 16, 2004, and certain FreeBSD... |
| CVE-2004-2202 | — | — | 1.5% | Dec 31, 2004 | Multiple SQL injection vulnerabilities in DUware DUclassified 4.0 through 4.2 allows remote attackers to bypass authenti... |
| CVE-2004-1958 | — | — | 2.4% | Dec 31, 2004 | Directory traversal vulnerability in manifest.ini in Unreal engine allows remote attackers to overwrite arbitrary files ... |
| CVE-2004-2020 | — | — | 1.4% | Dec 31, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in Php-Nuke 6.x through 7.3 allow remote attackers to inject arbitra... |
| CVE-2004-1960 | — | — | 1.7% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in blocker_query.php in Protector System 1.15b1 allows remote attackers to inje... |
| CVE-2004-1962 | — | — | 1.2% | Dec 31, 2004 | SQL injection vulnerability in index.php in Protector System 1.15b1 allows remote attackers to bypass SQL injection filt... |
| CVE-2004-2112 | — | — | 3.6% | Dec 31, 2004 | Directory traversal vulnerability in BremsServer 1.2.4 allows remote attackers to read arbitrary files via ".." (dot dot... |
| CVE-2004-1104 | — | — | 35.3% | Dec 31, 2004 | Microsoft Internet Explorer 6.0 SP2 allows remote attackers to spoof a legitimate URL in the status bar and conduct a ph... |
| CVE-2004-1879 | — | — | 1.2% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in PHPKIT 1.6.03 allows allows remote attackers to inject arbitrary web script ... |
| CVE-2004-1591 | — | — | 1.3% | Dec 31, 2004 | The web interface for Micronet Wireless Broadband Router SP916BM running firmware before 1.9 08/04/2004 resets the passw... |
| CVE-2004-1899 | — | — | 1.7% | Dec 31, 2004 | The administration interface in Monit 1.4 through 4.2 allows remote attackers to cause an off-by-one overflow via a POST... |
| CVE-2004-1234 | — | — | 0.5% | Dec 31, 2004 | load_elf_binary in Linux before 2.4.26 allows local users to cause a denial of service (system crash) via an ELF binary ... |
| CVE-2004-1779 | — | — | 1.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in board.php for ThWboard before beta 2.84 allows remote attackers to inject ar... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now