2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2004-0707SQL injection vulnerability in editusers.cgi in Bugzilla 2.16.x before 2.16.6, and 2.18 before 2.18rc1, allows remote at...
CVE-2004-0706Bugzilla 2.17.5 through 2.17.7 embeds the password in an image URL, which could allow local users to view the password i...
CVE-2004-0705Multiple cross-site scripting (XSS) vulnerabilities in (1) editcomponents.cgi, (2) editgroups.cgi, (3) editmilestones.cg...
CVE-2004-0704Unknown vulnerability in (1) duplicates.cgi and (2) buglist.cgi in Bugzilla 2.16.x before 2.16.6, 2.18 before 2.18rc1, w...
CVE-2004-0703Unknown vulnerability in the administrative controls in Bugzilla 2.17.1 through 2.17.7 allows users with "grant membersh...
CVE-2004-0702DBI in Bugzilla 2.17.1 through 2.17.7 displays the database password in an error message when the SQL server is not runn...
CVE-2004-0701Sun Ray Server Software (SRSS) 1.3 and 2.0 for Solaris 2.6, 7 and 8 does not properly detect a smartcard removal when th...
CVE-2004-0700Format string vulnerability in the mod_proxy hook functions function in ssl_engine_log.c in mod_ssl before 2.8.19 for Ap...
CVE-2004-0697Unknown vulnerability in 4D WebSTAR 5.3.2 and earlier allows remote attackers to read the php.ini configuration file and...
CVE-2004-0696The ShellExample.cgi script in 4D WebSTAR 5.3.2 and earlier allows remote attackers to list arbitrary directories via a ...
CVE-2004-0695Stack-based buffer overflow in the FTP service for 4D WebSTAR 5.3.2 and earlier allows remote attackers to execute arbit...
CVE-2004-0600Buffer overflow in the Samba Web Administration Tool (SWAT) in Samba 3.0.2 to 3.0.4 allows remote attackers to execute a...
CVE-2004-0686Buffer overflow in Samba 2.2.x to 2.2.9, and 3.0.0 to 3.0.4, when the "mangling method = hash" option is enabled in smb....
CVE-2004-0632Adobe Reader 6.0 does not properly handle null characters when splitting a filename path into components, which allows r...
CVE-2004-0735Buffer overflow in Medal of Honor (1) Allied Assault 1.11v9 and earlier, (2) Breakthrough 2.40b and earlier, and (3) Spe...
CVE-2004-0736The search module in Php-Nuke allows remote attackers to gain sensitive information via the (1) "**" or (2) "+" search p...
CVE-2004-0742Sun Java System Portal Server 6.2 (formerly Sun ONE) allows remote authenticated users to obtain Calendar Server privile...
CVE-2004-0734Web_Store.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter.
CVE-2004-0737Multiple cross-site scripting vulnerabilities in index.php in the Search module for Php-Nuke allows remote attackers to ...
CVE-2004-0741LionMax Software WWW File Share Pro 2.60 allows remote attackers to cause a denial of service (crash or hang) via a long...
CVE-2004-0733Format string vulnerability in OllyDbg 1.10 allows remote attackers to cause a denial of service (crash) and possibly ex...
CVE-2004-0732SQL injection vulnerability in index.php in the Search module for Php-Nuke allows remote attackers to execute arbitrary ...
CVE-2004-0731Cross-site scripting (XSS) vulnerability in index.php in the Search module for Php-Nuke allows remote attackers to injec...
CVE-2004-0738Multiple SQL injection vulnerabilities in the Search module in Php-Nuke allow remote attackers to execute arbitrary SQL ...
CVE-2004-06984D WebSTAR 5.3.2 and earlier allows local users to read and modify arbitrary files via a symlink attack.

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now