RSS   Vulnerabilities for 'Sh-news'   RSS

2009-04-08
 
CVE-2008-6664

 

 
action.php in SH-News 3.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the shuser and shpass cookies to non-zero values.

 


Copyright 2024, cxsecurity.com

 

Back to Top