Strix
26.1K

2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

CRITICAL12

0.4%

HIGH24

0.9%

MEDIUM9

0.3%

LOW0

0.0%

UNKNOWN2,662

98.3%

CVE IDSeverityCVSSDescription
CVE-2004-2025SQL injection vulnerability in application_top.php for Zen Cart 1.1.3 before patch 2 may allow remote attackers to execu...
CVE-2004-2024The distribution of Zen Cart 1.1.4 before patch 2 includes certain debugging code in the Admin password retrieval functi...
CVE-2004-2050eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allow local users to gain privileges by pressing CTRL-S...
CVE-2004-2182Session fixation vulnerability in Macromedia JRun 4.0 allows remote attackers to hijack user sessions by pre-setting the...
CVE-2004-2125Buffer overflow in blackd.exe for BlackICE PC Protection 3.6 and other versions before 3.6.ccb, with application protect...
CVE-2004-1506Multiple cross-site scripting (XSS) vulnerabilities in WebCalendar allow remote attackers to inject arbitrary web script...
CVE-2004-1486Unknown vulnerability in Serviceguard A.11.13 through A.11.16.00 and Cluster Object Manager A.01.03 and B.01.04 through ...
CVE-2004-1470CRLF injection vulnerability in SnipSnap 0.5.2a, and other versions before 1.0b1, allows remote attackers to perform HTT...
CVE-2004-1448Jetbox One 2.0.8 and possibly other versions allow remote attackers with Author privileges in the IMAGES module to uploa...
CVE-2004-1427PHP remote file inclusion vulnerability in main.inc in KorWeblog 1.6.2-cvs and earlier allows remote attackers to execut...
CVE-2004-1407Multiple directory traversal vulnerabilities in singapore Image Gallery Web Application 0.9.10 allow remote attackers to...
CVE-2004-1510WebCalendar allows remote attackers to gain privileges by modifying critical parameters to (1) view_entry.php or (2) upc...
CVE-2004-1879Cross-site scripting (XSS) vulnerability in PHPKIT 1.6.03 allows allows remote attackers to inject arbitrary web script ...
CVE-2004-1750RealVNC 4.0 and earlier allows remote attackers to cause a denial of service (crash) via a large number of connections t...
CVE-2004-1753The Apple Java plugin, as used in Netscape 7.1 and 7.2, Mozilla 1.7.2, and Firefox 0.9.3 on MacOS X 10.3.5, when tabbed ...
CVE-2004-1767The kernel in Solaris 2.6, 7, 8, and 9 allows local users to gain privileges by loading arbitrary loadable kernel module...
CVE-2004-1553SQL injection vulnerability in aspWebAlbum allows remote attackers to execute arbitrary SQL statements via (1) the usern...
CVE-2004-1747Cross-site scripting (XSS) vulnerability in NetworkEverywhere NR041 running firmware 1.2 Release 03 allows remote attack...
CVE-2004-1748NtRegmon before 6.12 allows local users to cause a denial of service (crash), while NtRegmon is running, via invalid poi...
CVE-2004-1530SQL injection vulnerability in the Event Calendar module 2.13 for PHP-Nuke allows remote attackers to execute arbitrary ...
CVE-2004-1402SQL injection vulnerability in iWebNegar allows remote attackers to execute arbitrary SQL commands via (1) the string pa...
CVE-2004-2059Multiple cross-site scripting vulnerabilities in ASPRunner 2.4 allow remote attackers to inject arbitrary web script or ...
CVE-2004-1540ZyXEL Prestige 623, 650, and 652 HW Routers, and possibly other versions, with HTTP Remote Administration enabled, does ...
CVE-2004-2099Buffer overflow in Need for Speed Hot Pursuit 2.0 client (NFSHP2), version 242 and earlier, allows remote attackers (ser...
CVE-2004-2459Unknown vulnerability in gnubiff 1.2.0 and earlier allows local users to obtain passwords, related to the password table...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now