Critical severity9.8NVD Advisory· Published Nov 2, 2005· Updated Apr 16, 2026

CVE-2005-3435

Description

admin_news.php in Archilles Newsworld up to 1.3.0 allows attackers to bypass authentication by obtaining the password hash for another user, for example through another Newsworld vulnerability, and specifying the hash in the pwd argument.

Affected products

Archilles/Newsworld
cpe:2.3:a:archilles:newsworld:*:*:*:*:*:*:*:*
Range: <=1.3.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/17310/nvdBroken LinkVendor Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/22860nvdThird Party AdvisoryVDB Entry
marc.infonvdMailing List

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000