2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-2116 | — | — | 8.7% | Dec 31, 2004 | Directory traversal vulnerability in Tiny Server 1.1 allows remote attackers to read or download arbitrary files via a .... |
| CVE-2004-2141 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2004-1827. Reason: This candidate is a duplicate of... |
| CVE-2004-1540 | — | — | 6.6% | Dec 31, 2004 | ZyXEL Prestige 623, 650, and 652 HW Routers, and possibly other versions, with HTTP Remote Administration enabled, does ... |
| CVE-2004-1327 | — | — | 4.4% | Dec 31, 2004 | Buffer overflow in Crystal FTP Client 2.8 allows remote malicious servers to execute arbitrary code via a response to a ... |
| CVE-2004-1328 | — | — | 0.5% | Dec 31, 2004 | Unknown vulnerability in newgrp in HP-UX B.11.00, B.11.04, and B.11.11 allows local users to gain elevated privileges. |
| CVE-2004-2138 | — | — | 1.5% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in AWSguest.php in AllWebScripts MySQLGuest allows remote attackers to inject a... |
| CVE-2004-1330 | — | — | 1.2% | Dec 31, 2004 | Buffer overflow in paginit in AIX 5.1 through 5.3 allows local users to execute arbitrary code via a long username. |
| CVE-2004-1417 | — | — | 1.9% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in login.php in PsychoStats 2.2.4 Beta and earlier allows remote attackers to i... |
| CVE-2004-1332 | — | — | 9.5% | Dec 31, 2004 | Stack-based buffer overflow in the FTP daemon in HP-UX 11.11i, with the -v (debug) option enabled, allows remote attacke... |
| CVE-2004-2350 | — | — | 1.2% | Dec 31, 2004 | SQL injection vulnerability in search.php for phpBB 1.0 through 2.0.6 allows remote attackers to execute arbitrary SQL a... |
| CVE-2004-1800 | — | — | 1.5% | Dec 31, 2004 | Unknown vulnerability in Sysbotz SimpleData 4.0.1 and possibly earlier versions allows remote attackers to gain access v... |
| CVE-2004-2351 | — | — | 1.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in GBook for Php-Nuke 1.0 allows remote attackers to inject arbitrary web scrip... |
| CVE-2004-0090 | — | — | 1.7% | Dec 31, 2004 | Unknown vulnerability in Windows File Sharing for Mac OS X 10.1.5 through 10.3.2 does not "shutdown properly," which has... |
| CVE-2004-1798 | — | — | 2.2% | Dec 31, 2004 | RealOne player 6.0.11.868 allows remote attackers to execute arbitrary script in the "My Computer" zone via a Synchroniz... |
| CVE-2004-1486 | — | — | 3.7% | Dec 31, 2004 | Unknown vulnerability in Serviceguard A.11.13 through A.11.16.00 and Cluster Object Manager A.01.03 and B.01.04 through ... |
| CVE-2004-2356 | — | — | 2.6% | Dec 31, 2004 | Early termination vulnerability in Fizmez Web Server 1.0 allows remote attackers to cause a denial of service (crash) by... |
| CVE-2004-2263 | — | — | 1.4% | Dec 31, 2004 | SQL injection vulnerability in the valid function in fr_left.php in PlaySMS 0.7 and earlier allows remote attackers to m... |
| CVE-2004-1401 | — | — | 2.7% | Dec 31, 2004 | SQL injection vulnerability in verify.asp in Asp-rider allows remote attackers to execute arbitrary SQL statements and b... |
| CVE-2004-2022 | — | — | 1.7% | Dec 31, 2004 | ActivePerl 5.8.x and others, and Larry Wall's Perl 5.6.1 and others, when running on Windows systems, allows attackers t... |
| CVE-2004-1343 | — | — | 1.9% | Dec 31, 2004 | CVS 1.12 and earlier on Debian GNU/Linux does not properly handle when a mapping for the current repository does not exi... |
| CVE-2004-2097 | — | — | 0.4% | Dec 31, 2004 | Multiple scripts on SuSE Linux 9.0 allow local users to overwrite arbitrary files via a symlink attack on (1) /tmp/fvwm-... |
| CVE-2004-1452 | — | — | 0.4% | Dec 31, 2004 | Tomcat before 5.0.27-r3 in Gentoo Linux sets the default permissions on the init scripts as tomcat:tomcat, but executes ... |
| CVE-2004-1451 | — | — | 1.4% | Dec 31, 2004 | Mozilla before 1.6 does not display the entire URL in the status bar when a link contains %00, which could allow remote ... |
| CVE-2004-1478 | — | — | 3.4% | Dec 31, 2004 | JRun 4.0 does not properly generate and handle the JSESSIONID, which allows remote attackers to perform a session fixati... |
| CVE-2004-2264 | — | — | 2.0% | Dec 31, 2004 | Format string bug in the open_altfile function in filename.c for GNU less 382, 381, and 358 might allow local users to c... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now