2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1355 | — | — | 0.3% | Apr 26, 2004 | Unknown vulnerability in the TCP/IP stack for Sun Solaris 8 and 9 allows local users to cause a denial of service (syste... |
| CVE-2004-1078 | — | — | 3.8% | Apr 26, 2004 | Stack-based buffer overflow in the client for Citrix Program Neighborhood Agent for Win32 8.00.24737 and earlier and Cit... |
| CVE-2004-1967 | HIGH | 8.8 | 1.6% | Apr 25, 2004 | Cross-site request forgery (CSRF) vulnerabilities in (1) cp_forums.php, (2) cp_usergroup.php, (3) cp_ipbans.php, (4) myh... |
| CVE-2004-1969 | — | — | 1.5% | Apr 25, 2004 | The avatar upload capability in Open Bulletin Board (OpenBB) 1.0.6 and earlier allows remote attackers to execute arbitr... |
| CVE-2004-1965 | — | — | 8.4% | Apr 25, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in Open Bulletin Board (OpenBB) 1.0.6 and earlier allows remote atta... |
| CVE-2004-1961 | — | — | 1.4% | Apr 23, 2004 | blocker.php in Protector System 1.15b1 allows remote attackers to bypass SQL injection protection and execute limited SQ... |
| CVE-2004-1963 | — | — | 1.5% | Apr 23, 2004 | nqt.php in Network Query Tool (NQT) 1.6 allows remote attackers to obtain sensitive information via a string in the port... |
| CVE-2004-1964 | — | — | 1.2% | Apr 23, 2004 | Cross-site scripting (XSS) vulnerability in nqt.php in Network Query Tool (NQT) 1.6 allows remote attackers to inject ar... |
| CVE-2004-1952 | — | — | 1.2% | Apr 23, 2004 | SQL injection vulnerability in Advanced Guestbook 2.2 allows remote attackers to execute arbitrary SQL commands and gain... |
| CVE-2004-1959 | — | — | 1.6% | Apr 23, 2004 | blocker_query.php in Protector System 1.15b1 for PHP-Nuke allows remote attackers to gain sensitive information via a st... |
| CVE-2004-1356 | — | — | 0.4% | Apr 23, 2004 | Unknown vulnerability in the sendfilev function in Sun Solaris 8 and 9 allows local users to cause a denial of service (... |
| CVE-2004-1957 | — | — | 4.6% | Apr 21, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in PostNuke 0.726 allows remote attackers to inject arbitrary web sc... |
| CVE-2004-1956 | — | — | 1.5% | Apr 21, 2004 | PostNuke 0.7.2.6 allows remote attackers to gain information via a direct HTTP request to files in the (1) includes/bloc... |
| CVE-2004-1954 | — | — | 1.9% | Apr 21, 2004 | Cross-site scripting (XSS) vulnerability in modules.php in phProfession 2.5 allows remote attackers to inject arbitrary ... |
| CVE-2004-1948 | — | — | 0.5% | Apr 20, 2004 | NcFTP client 3.1.6 and 3.1.7, when the username and password are included in an FTP URL that is provided on the command ... |
| CVE-2004-1945 | — | — | 6.5% | Apr 20, 2004 | Buffer overflow in Kinesphere eXchange POP3 allows remote attackers to execute arbitrary code via a long MAIL FROM field... |
| CVE-2004-1992 | — | — | 11.2% | Apr 20, 2004 | Buffer overflow in Serv-U FTP server before 5.0.0.6 allows remote attackers to cause a denial of service (crash) via a l... |
| CVE-2004-1947 | — | — | 6.8% | Apr 19, 2004 | The AVXSCANONLINE.AvxScanOnlineCtrl.1 ActiveX control in BitDefender Scan Online allows remote attackers to (1) obtain s... |
| CVE-2004-1941 | — | — | 2.0% | Apr 19, 2004 | Fastream NETFile FTP/Web Server 6.5.1.980 allows remote attackers to cause a denial of service via a username that does ... |
| CVE-2004-1942 | — | — | 1.4% | Apr 19, 2004 | The Solaris 9 patches 113579-02 through 113579-05, and 114342-02 through 114342-05, prevent ypserv and ypxfrd from prope... |
| CVE-2004-1943 | — | — | 2.6% | Apr 19, 2004 | PHP remote file inclusion vulnerability in album_portal.php in phpBB modified by Przemo 1.8 allows remote attackers to e... |
| CVE-2004-1938 | — | — | 1.2% | Apr 19, 2004 | SQL injection vulnerability in userlogin.php in Phorum 3.4.7 allows remote attackers to execute arbitrary SQL commands v... |
| CVE-2004-1946 | — | — | 0.6% | Apr 19, 2004 | Format string vulnerability in the PRINT_ERROR function in common.c for Cherokee Web Server 0.4.16 and earlier allows lo... |
| CVE-2004-1950 | — | — | 1.5% | Apr 19, 2004 | phpBB 2.0.8a and earlier trusts the IP address that is in the X-Forwarded-For in the HTTP header, which allows remote at... |
| CVE-2004-1935 | — | — | 1.8% | Apr 15, 2004 | Cross-site scripting (XSS) vulnerability in SCT Campus Pipeline allows remote attackers to inject arbitrary web script o... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now