Strix
26.1K

2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

CRITICAL12

0.4%

HIGH24

0.9%

MEDIUM9

0.3%

LOW0

0.0%

UNKNOWN2,662

98.3%

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2004-0240Directory traversal vulnerability in X-Cart 3.4.3 allows remote attackers to view arbitrary files via a .. (dot dot) in ...
CVE-2004-0239SQL injection vulnerability in showphoto.php in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain unauth...
CVE-2004-0238Multiple buffer overflows in Overkill (0verkill) 0.15pre3 might allow local users to execute arbitrary code in the clien...
CVE-2004-0237Directory traversal vulnerability in index.php in Aprox PHP Portal allows remote attackers to read arbitrary files via a...
CVE-2004-0236SQL injection vulnerability in login.asp in thePHOTOtool allows remote attackers to gain unauthorized access via the pas...
CVE-2004-0112The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly ...
CVE-2004-0415Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portio...
CVE-2004-0203Cross-site scripting (XSS) vulnerability in Outlook Web Access for Exchange Server 5.5 Service Pack 4 allows remote atta...
CVE-2004-0771Buffer overflow in the extract_one function from lhext.c in LHA may allow attackers to execute arbitrary code via a long...
CVE-2004-0744The TCP/IP Networking component in Mac OS X before 10.3.5 allows remote attackers to cause a denial of service (memory a...
CVE-2004-0743Safari in Mac OS X before 10.3.5, after sending form data using the POST method, may re-send the data to a GET method UR...
CVE-2004-0361The Javascript engine in Safari 1.2 and earlier allows remote attackers to cause a denial of service (segmentation fault...
CVE-2004-0360Unknown vulnerability in passwd(1) in Solaris 8.0 and 9.0 allows local users to gain privileges via unknown attack vecto...
CVE-2004-0359Cross-site scripting (XSS) vulnerability in index.php for Invision Power Board 1.3 final allows remote attackers to exec...
CVE-2004-0358Cross-site scripting (XSS) vulnerability in VirtuaNews Admin Panel Pro 1.0.3 allows remote attackers to execute arbitrar...
CVE-2004-0357Stack-based buffer overflows in SL Mail Pro 2.0.9 allow remote attackers to execute arbitrary code via (1) user.dll, (2)...
CVE-2004-0356Stack-based buffer overflow in Supervisor Report Center in SL Mail Pro 2.0.9 and earlier allows remote attackers to exec...
CVE-2004-0355Invision Power Board 1.3 Final allows remote attackers to gain sensitive information by selecting a file for "Personal P...
CVE-2004-0354Multiple format string vulnerabilities in GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow remote attackers to ex...
CVE-2004-0353Multiple buffer overflows in auth_ident() function in auth.c for GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow...
CVE-2004-0352Cisco 11000 Series Content Services Switches (CSS) running WebNS 5.0(x) before 05.0(04.07)S, and 6.10(x) before 06.10(02...
CVE-2004-0351Spider Sales shopping cart stores the private key in the same database and table as the public key, which allows local u...
CVE-2004-0350SpiderSales shopping cart does not enforce a minimum length for the private key, which can make it easier for local user...
CVE-2004-0349Directory traversal vulnerability in GWeb HTTP Server 0.6 allows remote attackers to view arbitrary files via a .. (dot ...
CVE-2004-0348SQL injection vulnerability in viewCart.asp in SpiderSales shopping cart software allows remote attackers to execute arb...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now