cpe:/a:newsphp:newsphp:216 CVE-2003-0754 2003-10-20T00:00:00.000-04:00 2008-09-10T15:20:21.570-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2004-01-01T00:00:00.000-05:00 ALLOWS_OTHER_ACCESS BUGTRAQ 20030824 newsPHP file inclusion & bad login validation nphpd.php in newsPHP 216 and earlier allows remote attackers to bypass authentication via an HTTP request with a modified nphp_users array, which is used for authentication.