Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Yarck Subscribe
Filtered by product Sh-news
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-6664 1 Yarck 1 Sh-news 2017-09-28 7.5 HIGH N/A
action.php in SH-News 3.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the shuser and shpass cookies to non-zero values.