← CVECheck
HomeVulnerabilities

CVE-2000-0944 — CRITICAL severity vulnerability (CGI Script Center News Update 1.1 does not properly validate)

CGI Script Center News Update 1.1 does not properly validate the original news administration password during a password change operation, which allows remote attackers to modify the password without knowing the original password.

CVE IDCVE-2000-0944
SeverityCRITICAL
CVSS score9.8
CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWECWE-522
StatusModified
Published2000-12-19
Last modified2026-04-16
DescriptionCGI Script Center News Update 1.1 does not properly validate the original news administration password during a password change operation, which allows remote attackers to modify the password without knowing the original password.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →