2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-0264 | — | — | 3.2% | Nov 23, 2004 | palmhttpd for PalmOS allows remote attackers to cause a denial of service (crash) by establishing two simultaneous HTTP ... |
| CVE-2004-0263 | — | — | 3.5% | Nov 23, 2004 | PHP 4.3.4 and earlier in Apache 1.x and 2.x (mod_php) can leak global variables between virtual hosts that are handled b... |
| CVE-2004-0262 | — | — | 5.2% | Nov 23, 2004 | Stack-based buffer overflow in The Palace 3.5 and earlier client allows remote attackers to execute arbitrary code via a... |
| CVE-2004-0261 | — | — | 4.8% | Nov 23, 2004 | oj.cgi in OpenJournal 2.0 through 2.0.5 allows remote attackers to bypass authentication and access the control panel vi... |
| CVE-2004-0260 | — | — | 1.4% | Nov 23, 2004 | The AddToMailingList function in CactuSoft CactuShop 5.0 Lite contains a backdoor that allows remote attackers to delete... |
| CVE-2004-0259 | — | — | 2.1% | Nov 23, 2004 | The check_referer() function in Formmail.php 5.0 and earlier allows remote attackers to bypass access restrictions via a... |
| CVE-2004-0258 | — | — | 7.2% | Nov 23, 2004 | Multiple buffer overflows in RealOne Player, RealOne Player 2.0, RealOne Enterprise Desktop, and RealPlayer Enterprise a... |
| CVE-2004-0257 | — | — | 2.5% | Nov 23, 2004 | OpenBSD 3.4 and NetBSD 1.6 and 1.6.1 allow remote attackers to cause a denial of service (crash) by sending an IPv6 pack... |
| CVE-2004-0256 | — | — | 0.3% | Nov 23, 2004 | GNU libtool before 1.5.2, during compile time, allows local users to overwrite arbitrary files via a symlink attack on l... |
| CVE-2004-0255 | — | — | 7.4% | Nov 23, 2004 | Xlight 1.52, with log to screen enabled, allows remote attackers to cause a denial of service by requesting a long direc... |
| CVE-2004-0254 | — | — | 2.0% | Nov 23, 2004 | Cross-site scripting (XSS) vulnerability in Discuz! Board 2.x and 3.x allows remote attackers to execute arbitrary scrip... |
| CVE-2004-0253 | — | — | 2.0% | Nov 23, 2004 | IBM Cloudscape 5.1 running jdk 1.4.2_03 allows remote attackers to execute arbitrary programs or cause a denial of servi... |
| CVE-2004-0494 | — | — | 1.6% | Nov 23, 2004 | Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform ce... |
| CVE-2004-0252 | — | — | 1.6% | Nov 23, 2004 | TYPSoft FTP Server 1.10 allows remote attackers to cause a denial of service (CPU consumption) via an empty USER name. |
| CVE-2004-0251 | — | — | 2.0% | Nov 23, 2004 | Cross-site scripting (XSS) vulnerability in rxgoogle.cgi allows remote attackers to execute arbitrary script as other us... |
| CVE-2004-0250 | — | — | 3.2% | Nov 23, 2004 | SQL injection vulnerability in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain privileges via (1) the ... |
| CVE-2004-0249 | — | — | 4.9% | Nov 23, 2004 | PHPX 2.0 through 3.2.4 allows remote attackers to gain access to other accounts by modifying the cookie's PXL variable t... |
| CVE-2004-0248 | — | — | 1.5% | Nov 23, 2004 | Cross-site scripting vulnerability (XSS) in PHPX 3.2.3 allows remote attackers to execute arbitrary script as other user... |
| CVE-2004-0247 | — | — | 3.4% | Nov 23, 2004 | The client and server of Chaser 1.50 and earlier allow remote attackers to cause a denial of service (crash via exceptio... |
| CVE-2004-0246 | — | — | 4.4% | Nov 23, 2004 | Multiple PHP remote file inclusion vulnerabilities in (1) fonctions.lib.php, (2) derniers_commentaires.php, and (3) admi... |
| CVE-2004-0245 | — | — | 3.2% | Nov 23, 2004 | Web Crossing 4.x and 5.x allows remote attackers to cause a denial of service (crash) by sending a HTTP POST request wit... |
| CVE-2004-0244 | — | — | 1.1% | Nov 23, 2004 | Cisco 6000, 6500, and 7600 series systems with Multilayer Switch Feature Card 2 (MSFC2) and a FlexWAN or OSM module allo... |
| CVE-2004-0243 | — | — | 1.7% | Nov 23, 2004 | AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct... |
| CVE-2004-0242 | — | — | 6.9% | Nov 23, 2004 | X-Cart 3.4.3 allows remote attackers to gain sensitive information via a mode parameter with (1) phpinfo command or (2) ... |
| CVE-2004-0241 | — | — | 6.0% | Nov 23, 2004 | X-Cart 3.4.3 allows remote attackers to execute arbitrary commands via the perl_binary argument in (1) upgrade.php or (2... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now