2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1645 | — | — | 3.6% | Aug 30, 2004 | Cross-site scripting (XSS) vulnerability in Xedus 1.0 allows remote attackers to execute arbitrary web script or HTML vi... |
| CVE-2004-1647 | — | — | 1.2% | Aug 30, 2004 | SQL injection vulnerability in Password Protect allows remote attackers to execute arbitrary SQL statements and bypass a... |
| CVE-2004-1646 | — | — | 7.1% | Aug 30, 2004 | Directory traversal vulnerability in Xedus 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the... |
| CVE-2004-1644 | — | — | 1.6% | Aug 30, 2004 | Xedus 1.0 allows remote attackers to cause a denial of service (refuse connections) by connecting multiple times from th... |
| CVE-2004-1660 | — | — | 1.7% | Aug 30, 2004 | PHP remote file inclusion vulnerability in CuteNews 1.3.6 and earlier allows remote attackers to execute arbitrary PHP c... |
| CVE-2004-1642 | — | — | 3.1% | Aug 29, 2004 | WFTPD Pro Server 3.21 allows remote authenticated users to cause a denial of service (crash) via a series of long MLIST ... |
| CVE-2004-1643 | — | — | 7.5% | Aug 29, 2004 | WS_FTP 5.0.2 allows remote authenticated users to cause a denial of service (CPU consumption) via a CD command that cont... |
| CVE-2004-1641 | — | — | 8.2% | Aug 29, 2004 | Heap-based buffer overflow in Titan FTP 3.21 and earlier allows remote attackers to cause a denial of service (crash) vi... |
| CVE-2004-0820 | — | — | 2.5% | Aug 28, 2004 | Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML fi... |
| CVE-2004-1640 | — | — | 2.1% | Aug 28, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 0.94 and 1.0 allow remote attackers to execute arbitrary we... |
| CVE-2004-1751 | — | — | 3.1% | Aug 26, 2004 | Ground Control II: Operation Exodus 1.0.0.7 and earlier allows remote servers to cause a denial of service (client or se... |
| CVE-2004-1681 | — | — | 1.1% | Aug 26, 2004 | Multiple buffer overflows in (1) phrelay-cfg, (2) phlocale, (3) pkg-installer, or (4) input-cfg in QNX Photon microGUI f... |
| CVE-2004-0819 | — | — | 1.4% | Aug 25, 2004 | The bridge functionality in OpenBSD 3.4 and 3.5, when running a gateway configured as a bridging firewall with the link2... |
| CVE-2004-1662 | — | — | 1.6% | Aug 25, 2004 | YaBB SE 1.5.1 allows remote attackers to obtain sensitive information via a direct HTTP request to Admin.php, which reve... |
| CVE-2004-1752 | — | — | 6.7% | Aug 24, 2004 | Stack-based buffer overflow in Gaucho 1.4 Build 145 allows remote attackers to execute arbitrary code via a POP3 email w... |
| CVE-2004-1743 | — | — | 1.7% | Aug 24, 2004 | Easy File Sharing (EFS) Webserver 1.25 allows remote attackers to view arbitrary files via an HTTP request for the disk_... |
| CVE-2004-1742 | — | — | 7.2% | Aug 24, 2004 | Directory traversal vulnerability in WebAPP 0.9.9 allows remote attackers to view arbitrary files via a .. (dot dot) in ... |
| CVE-2004-0800 | — | — | 0.4% | Aug 24, 2004 | Format string vulnerability in CDE Mailer (dtmail) on Solaris 8 and 9 allows local users to gain privileges via format s... |
| CVE-2004-1745 | — | — | 5.8% | Aug 24, 2004 | Buffer overflow in Painkiller 1.3.1 and earlier allows remote attackers to cause a denial of service (crash) and possibl... |
| CVE-2004-1744 | — | — | 3.7% | Aug 24, 2004 | Easy File Sharing (EFS) Webserver 1.25 allows remote attackers to cause a denial of service (CPU consumption or crash) v... |
| CVE-2004-1741 | — | — | 7.0% | Aug 23, 2004 | Music daemon (musicd) 0.0.3 and earlier allows remote attackers to cause a denial of service (crash) by calling LOAD wit... |
| CVE-2004-1740 | — | — | 1.6% | Aug 23, 2004 | Music daemon (musicd) 0.0.3 and earlier allows remote attackers to read arbitrary files by calling LOAD with a full path... |
| CVE-2004-1739 | — | — | 3.2% | Aug 23, 2004 | Bird Chat 1.61 allows remote attackers to cause a denial of service (crash) via invalid users. |
| CVE-2004-1735 | — | — | 2.1% | Aug 21, 2004 | Cross-site scripting (XSS) vulnerability in the create list option in Sympa 4.1.x and earlier allows remote authenticate... |
| CVE-2004-1727 | — | — | 3.1% | Aug 20, 2004 | BadBlue 2.5 allows remote attackers to cause a denial of service (refuse HTTP connections) via a large number of connect... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now