Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2008-6664

action.php in SH-News 3.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the shuser and shpass cookies to non-zero values.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.02
EPSS Ranking 82.9%
CVSS Severity
CVSS v2 Score 7.5
Products affected by CVE-2008-6664
  • Yarck » Sh-News » Version: 3.0
    cpe:2.3:a:yarck:sh-news:3.0


Contact Us

Shodan ® - All rights reserved