← CVECheck
HomeVulnerabilities

CVE-2000-0688 — HIGH severity vulnerability (Subscribe Me LITE does not properly authenticate attempts to)

Subscribe Me LITE does not properly authenticate attempts to change the administrator password, which allows remote attackers to gain privileges for the Account Manager by directly calling the subscribe.pl script with the setpwd parameter.

CVE IDCVE-2000-0688
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2000-10-20
Last modified2026-04-16
DescriptionSubscribe Me LITE does not properly authenticate attempts to change the administrator password, which allows remote attackers to gain privileges for the Account Manager by directly calling the subscribe.pl script with the setpwd parameter.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →