Cgi Script Center Subscribe Me Lite vulnerabilities
2 known vulnerabilities affecting cgi_script_center/subscribe_me_lite.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2000-0688P3HIGHCVSS 7.5PoCv2.02000-10-20
CVE-2000-0688 [HIGH] CVE-2000-0688: Subscribe Me LITE does not properly authenticate attempts to change the administrator password, whic
Subscribe Me LITE does not properly authenticate attempts to change the administrator password, which allows remote attackers to gain privileges for the Account Manager by directly calling the subscribe.pl script with the setpwd parameter.
nvd
CVE-2001-0086P4MEDIUMCVSS 5.0v1.0v2.02001-02-12
CVE-2001-0086 [MEDIUM] CVE-2001-0086: CGI Script Center Subscribe Me LITE 2.0 and earlier allows remote attackers to delete arbitrary mail
CGI Script Center Subscribe Me LITE 2.0 and earlier allows remote attackers to delete arbitrary mailing list users without authentication by directly calling subscribe.pl with the target address as a parameter.
nvd