Yarck : Security Vulnerabilities, CVEs, CVSS score >= 7
action.php in SH-News 3.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the shuser and shpass cookies to non-zero values.
Max CVSS
7.5
EPSS Score
2.20%
Published
2009-04-08
Updated
2017-09-29
1 vulnerabilities found