2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1755 | — | — | 1.5% | Dec 31, 2004 | The Web Services fat client for BEA WebLogic Server and Express 7.0 SP4 and earlier, when using 2-way SSL and multiple c... |
| CVE-2004-1730 | — | — | 1.4% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in Mantis bugtracker allows remote attackers to inject arbitrary web script or ... |
| CVE-2004-2017 | — | — | 2.8% | Dec 31, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in Turbo Traffic Trader C (TTT-C) 1.0 allow remote attackers to inje... |
| CVE-2004-2018 | — | — | 3.8% | Dec 31, 2004 | PHP remote file inclusion vulnerability in index.php in Php-Nuke 6.x through 7.3 allows remote attackers to execute arbi... |
| CVE-2004-2171 | — | — | 3.6% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in Cherokee before 0.4.8 allows remote attackers to inject arbitrary web script... |
| CVE-2004-2016 | — | — | 3.2% | Dec 31, 2004 | Stack-based buffer overflow in the HTTP server in NetChat 7.3 and earlier allows remote attackers to execute arbitrary c... |
| CVE-2004-1502 | — | — | 1.3% | Dec 31, 2004 | The Telnet proxy in 602 Lan Suite 2004.0.04.0909 and earlier allows remote attackers to cause a denial of service (socke... |
| CVE-2004-1501 | — | — | 1.3% | Dec 31, 2004 | The webmail service in 602 Lan Suite 2004.0.04.0909 and earlier allows remote attackers to cause a denial of service (CP... |
| CVE-2004-1491 | — | — | 12.6% | Dec 31, 2004 | Opera 7.54 and earlier uses kfmclient exec to handle unknown MIME types, which allows remote attackers to execute arbitr... |
| CVE-2004-1475 | — | — | 8.4% | Dec 31, 2004 | Multiple stack-based buffer overflows in xine-lib 1-rc2 through 1-rc5 allow attackers to execute arbitrary code via (1) ... |
| CVE-2004-1474 | — | — | 3.2% | Dec 31, 2004 | Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 36... |
| CVE-2004-1441 | — | — | 6.6% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in icq.cgi in Board Power 2.04PF allows remote attackers to inject arbitrary we... |
| CVE-2004-1519 | — | — | 1.2% | Dec 31, 2004 | SQL injection vulnerability in bug.php in phpBugTracker 0.9.1 allows remote attackers to execute arbitrary SQL commands ... |
| CVE-2004-1396 | — | — | 3.1% | Dec 31, 2004 | Winamp 5.07 and possibly other versions, allows remote attackers to cause a denial of service (application crash or CPU ... |
| CVE-2004-1408 | — | — | 1.5% | Dec 31, 2004 | The addImage method for admin.class.php in Image Gallery Web Application 0.9.10 does not properly check filenames, which... |
| CVE-2004-2219 | — | — | 8.1% | Dec 31, 2004 | Microsoft Internet Explorer 6 allows remote attackers to spoof the address bar to facilitate phishing attacks via Javasc... |
| CVE-2004-1561 | — | — | 78.3% | Dec 31, 2004 | Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with ... |
| CVE-2004-1442 | — | — | 4.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in db2www CGI interpreter in IBM Net.Data 7 and 7.2 allows remote attackers to ... |
| CVE-2004-2095 | — | — | 1.7% | Dec 31, 2004 | Honeyd before 0.8 replies to TCP packets with the SYN and RST flags set, which allows remote attackers to identify IP ad... |
| CVE-2004-1569 | — | — | 4.7% | Dec 31, 2004 | Buffer overflow in (1) MusicConverter.exe, (2) playlist.exe, and (3) amp.exe in dBpowerAMP Audio Player 2.0 and dbPowerA... |
| CVE-2004-2019 | — | — | 1.7% | Dec 31, 2004 | The WebLinks module in Php-Nuke 6.x through 7.3 allows remote attackers to obtain sensitive information via an invalid s... |
| CVE-2004-1515 | — | — | 1.0% | Dec 31, 2004 | SQL injection vulnerability in (1) ttlast.php and (2) last10.php in vBulletin 3.0.x allows remote attackers to execute a... |
| CVE-2004-1736 | — | — | 1.5% | Dec 31, 2004 | Cacti 0.8.5a allows remote attackers to gain sensitive information via an HTTP request to (1) auth.php, (2) auth_login.p... |
| CVE-2004-1666 | — | — | 9.9% | Dec 31, 2004 | Buffer overflow in the MSN module in Trillian 0.74i allows remote MSN servers to execute arbitrary code via a long strin... |
| CVE-2004-2129 | — | — | 3.4% | Dec 31, 2004 | SurfNOW 2.2 allows remote attackers to cause a denial of service (crash) via a series of long HTTP GET requests, possibl... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now