2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1632 | — | — | 1.3% | Oct 25, 2004 | Cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki 1.0.8 and earlier allows remote attackers to inject arb... |
| CVE-2004-1634 | — | — | 1.2% | Oct 25, 2004 | show_bug.cgi in Bugzilla 2.17.1 through 2.18rc2 and 2.19 from CVS, when using the insidergroup feature and exporting a b... |
| CVE-2004-1630 | — | — | 1.3% | Oct 25, 2004 | Cross-site scripting (XSS) vulnerability in the login form in Open WorkFlow Engine (OpenWFE) 1.4.x allows remote attacke... |
| CVE-2004-1631 | — | — | 1.4% | Oct 25, 2004 | Open WorkFlow Engine (OpenWFE) 1.4.x allows remote attackers to conduct port scans of remote hosts by specifying the tar... |
| CVE-2004-1633 | — | — | 1.2% | Oct 25, 2004 | process_bug.cgi in Bugzilla 2.9 through 2.18rc2 and 2.19 from CVS does not check edit permissions on the keywords field,... |
| CVE-2004-1635 | — | — | 1.4% | Oct 24, 2004 | Bugzilla 2.17.1 through 2.18rc2 and 2.19 from cvs, when using the insidergroup feature, does not sufficiently protect pr... |
| CVE-2004-1628 | — | — | 4.7% | Oct 23, 2004 | Format string vulnerability in log.c in rssh before 2.2.2 allows remote authenticated users to execute arbitrary code. |
| CVE-2004-1629 | — | — | 1.2% | Oct 23, 2004 | Multiple SQL injection vulnerabilities in Dwc_articles 1.6 and earlier allow remote attackers to execute arbitrary SQL s... |
| CVE-2004-1623 | — | — | 18.6% | Oct 22, 2004 | The WAV file property handler in Windows XP SP1 allows remote attackers to cause a denial of service (infinite loop in E... |
| CVE-2004-1627 | — | — | 14.5% | Oct 22, 2004 | Buffer overflow in Ability Server 2.25, 2.32, 2.34, and possibly other versions, allows remote attackers to execute arbi... |
| CVE-2004-1625 | — | — | 1.6% | Oct 22, 2004 | pGina 1.7.6 and possibly older versions, when the Restart or Shutdown options are enabled on the login screen, allows re... |
| CVE-2004-1626 | — | — | 67.4% | Oct 22, 2004 | Buffer overflow in Ability Server 2.34, and possibly other versions, allows remote attackers to execute arbitrary code v... |
| CVE-2004-1622 | — | — | 2.4% | Oct 21, 2004 | SQL injection vulnerability in dosearch.php in UBB.threads 3.4.x allows remote attackers to execute arbitrary SQL statem... |
| CVE-2004-1624 | — | — | 0.3% | Oct 21, 2004 | Carbon Copy 6.0.5257 does not drop system privileges when opening external programs through the help topic interface, wh... |
| CVE-2004-1620 | — | — | 8.1% | Oct 21, 2004 | CRLF injection vulnerability in Serendipity before 0.7rc1 allows remote attackers to perform HTTP Response Splitting att... |
| CVE-2004-0687 | — | — | 8.1% | Oct 20, 2004 | Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) Parse... |
| CVE-2004-0688 | — | — | 7.2% | Oct 20, 2004 | Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXIma... |
| CVE-2004-1380 | — | — | 3.7% | Oct 20, 2004 | Firefox before 1.0 and Mozilla before 1.7.5 allows inactive (background) tabs to launch dialog boxes, which can allow re... |
| CVE-2004-0768 | — | — | 3.3% | Oct 20, 2004 | libpng 1.2.5 and earlier does not properly calculate certain buffer offsets, which could allow remote attackers to execu... |
| CVE-2004-0559 | — | — | 0.4% | Oct 20, 2004 | The maketemp.pl script in Usermin 1.070 and 1.080 allows local users to overwrite arbitrary files at install time via a ... |
| CVE-2004-0755 | — | — | 0.4% | Oct 20, 2004 | The FileStore capability in CGI::Session for Ruby before 1.8.1, and possibly PStore, creates files with insecure permiss... |
| CVE-2004-0754 | — | — | 4.5% | Oct 20, 2004 | Integer overflow in Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary... |
| CVE-2004-0753 | — | — | 5.9% | Oct 20, 2004 | The BMP image processor for (1) gdk-pixbuf before 0.22 and (2) gtk2 before 2.2.4 allows remote attackers to cause a deni... |
| CVE-2004-0752 | — | — | 0.6% | Oct 20, 2004 | OpenOffice (OOo) 1.1.2 creates predictable directory names with insecure permissions during startup, which may allow loc... |
| CVE-2004-0751 | — | — | 69.7% | Oct 20, 2004 | The char_buffer_read function in the mod_ssl module for Apache 2.x, when using reverse proxying to an SSL server, allows... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now