2 matches found
CVE-2001-0086
CVE-2001-0086 affects CGI Script Center Subscribe Me LITE 2.0 and earlier. The vulnerability allows remote attackers to delete arbitrary mailing-list users by directly calling subscribe.pl with the target address as a parameter, without authentication. The NVD entry notes a CVSS v2 base score of ...
CVE-2000-0688
CVE-2000-0688 concerns Subscribe Me LITE. The vulnerability is that it does not properly authenticate password-change attempts, allowing a remote attacker to gain privileges for the Account Manager by directly invoking subscribe.pl with the setpwd parameter. The available connected documents conf...