CVE-2005-3435

CVSS 9.8 - CRITICAL
Description

admin_news.php in Archilles Newsworld up to 1.3.0 allows attackers to bypass authentication by obtaining the password hash for another user, for example through another Newsworld vulnerability, and specifying the hash in the pwd argument.

Affected Products
1
Vendor Product Version
archilles newsworld All versions
References
http://marc.info/?l=bugtraq&m=113018731120709&w=2
http://secunia.com/advisories/17310/
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
http://marc.info/?l=bugtraq&m=113018731120709&w=2
http://secunia.com/advisories/17310/
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
Weakness Types
CWE-522
CVE Information
CVE ID:
CVE-2005-3435
Published:
2005-11-02
Modified:
2026-04-16
CVSS Score:
9.8
Severity:
CRITICAL
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Vendors
archilles
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL