Unrated severityNVD Advisory· Published Dec 6, 2004· Updated Jun 16, 2026
CVE-2004-0621
CVE-2004-0621
Description
admin.php in Newsletter ZWS allows remote attackers to gain administrative privileges via a list_user operation with the ulevel parameter set to 1 (administrator level), which lists all users and their passwords.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:zaireweb_solutions:newsletter_zws:*:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/10605nvdExploitVendor Advisory
- marc.infonvd
- exchange.xforce.ibmcloud.com/vulnerabilities/16507nvd
News mentions
0No linked articles in our index yet.