cb
cvebase
.
~
/
products
/
yarck
/
sh-news
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
yarck
/
Yarck Sh-News
Yarck Sh-News vulnerabilities
1 known vulnerability affecting
yarck/sh-news
.
Track
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2008-6664
P3
HIGH
CVSS 7.5
PoC
v3.0
2009-04-08
CVE-2008-6664 [HIGH] CWE-287 CVE-2008-6664: action.php in SH-News 3.0 allows remote attackers to bypass authentication and gain administrator pr action.php in SH-News 3.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the shuser and shpass cookies to non-zero values.
nvd
Yarck Sh-News vulnerabilities | cvebase