CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Yarck: Security Vulnerabilities

CVE-2008-6664

action.php in SH-News 3.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the shuser and shpass cookies to non-zero values.

CVSS Score

7.5

EPSS Score

0.02

Published

2009-04-08

Page 1

Vulnerabilities

Vulnerable Software

Yarck: Security Vulnerabilities

Products

Pricing

Contact Us