← CVECheck
HomeVulnerabilities

CVE-2000-0720 — MEDIUM severity vulnerability (news.cgi in GWScripts News Publisher does not properly authe)

news.cgi in GWScripts News Publisher does not properly authenticate requests to add an author to the author index, which allows remote attackers to add new authors by directly posting an HTTP request to the new.cgi program with an addAuthor parameter, and setting the Referer to the news.cgi program.

CVE IDCVE-2000-0720
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2000-10-20
Last modified2026-04-16
Descriptionnews.cgi in GWScripts News Publisher does not properly authenticate requests to add an author to the author index, which allows remote attackers to add new authors by directly posting an HTTP request to the new.cgi program with an addAuthor parameter, and setting the Referer to the news.cgi program.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →