Vulnerability Database

308,820

Total vulnerabilities in the database

CVE-2000-0689

Account Manager LITE does not properly authenticate attempts to change the administrator password, which allows remote attackers to gain privileges for the Account Manager by directly calling the amadmin.pl script with the setpasswd parameter.

Published: Oct 20, 2000
Updated: Nov 9, 2025
CVE: CVE-2000-0689
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
cgi_script_center / account_manager	lite_1.0	lite_1.0.x
cgi_script_center / account_manager	pro_1.0	pro_1.0.x

http://archives.neohapsis.com/archives/bugtraq/2000-08/0291.html
http://www.cgiscriptcenter.com/acctlite/
http://www.osvdb.org/13341
http://www.securityfocus.com/bid/1604
https://exchange.xforce.ibmcloud.com/vulnerabilities/5125

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo