2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

CVE IDSeverityCVSSDescription
CVE-2004-1645Cross-site scripting (XSS) vulnerability in Xedus 1.0 allows remote attackers to execute arbitrary web script or HTML vi...
CVE-2004-1647SQL injection vulnerability in Password Protect allows remote attackers to execute arbitrary SQL statements and bypass a...
CVE-2004-1646Directory traversal vulnerability in Xedus 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the...
CVE-2004-1644Xedus 1.0 allows remote attackers to cause a denial of service (refuse connections) by connecting multiple times from th...
CVE-2004-1660PHP remote file inclusion vulnerability in CuteNews 1.3.6 and earlier allows remote attackers to execute arbitrary PHP c...
CVE-2004-1642WFTPD Pro Server 3.21 allows remote authenticated users to cause a denial of service (crash) via a series of long MLIST ...
CVE-2004-1643WS_FTP 5.0.2 allows remote authenticated users to cause a denial of service (CPU consumption) via a CD command that cont...
CVE-2004-1641Heap-based buffer overflow in Titan FTP 3.21 and earlier allows remote attackers to cause a denial of service (crash) vi...
CVE-2004-0820Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML fi...
CVE-2004-1640Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 0.94 and 1.0 allow remote attackers to execute arbitrary we...
CVE-2004-1751Ground Control II: Operation Exodus 1.0.0.7 and earlier allows remote servers to cause a denial of service (client or se...
CVE-2004-1681Multiple buffer overflows in (1) phrelay-cfg, (2) phlocale, (3) pkg-installer, or (4) input-cfg in QNX Photon microGUI f...
CVE-2004-0819The bridge functionality in OpenBSD 3.4 and 3.5, when running a gateway configured as a bridging firewall with the link2...
CVE-2004-1662YaBB SE 1.5.1 allows remote attackers to obtain sensitive information via a direct HTTP request to Admin.php, which reve...
CVE-2004-1752Stack-based buffer overflow in Gaucho 1.4 Build 145 allows remote attackers to execute arbitrary code via a POP3 email w...
CVE-2004-1743Easy File Sharing (EFS) Webserver 1.25 allows remote attackers to view arbitrary files via an HTTP request for the disk_...
CVE-2004-1742Directory traversal vulnerability in WebAPP 0.9.9 allows remote attackers to view arbitrary files via a .. (dot dot) in ...
CVE-2004-0800Format string vulnerability in CDE Mailer (dtmail) on Solaris 8 and 9 allows local users to gain privileges via format s...
CVE-2004-1745Buffer overflow in Painkiller 1.3.1 and earlier allows remote attackers to cause a denial of service (crash) and possibl...
CVE-2004-1744Easy File Sharing (EFS) Webserver 1.25 allows remote attackers to cause a denial of service (CPU consumption or crash) v...
CVE-2004-1741Music daemon (musicd) 0.0.3 and earlier allows remote attackers to cause a denial of service (crash) by calling LOAD wit...
CVE-2004-1740Music daemon (musicd) 0.0.3 and earlier allows remote attackers to read arbitrary files by calling LOAD with a full path...
CVE-2004-1739Bird Chat 1.61 allows remote attackers to cause a denial of service (crash) via invalid users.
CVE-2004-1735Cross-site scripting (XSS) vulnerability in the create list option in Sympa 4.1.x and earlier allows remote authenticate...
CVE-2004-1727BadBlue 2.5 allows remote attackers to cause a denial of service (refuse HTTP connections) via a large number of connect...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now