Unrated severityNVD Advisory· Published Apr 8, 2009· Updated Jun 16, 2026
CVE-2008-6664
CVE-2008-6664
Description
action.php in SH-News 3.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the shuser and shpass cookies to non-zero values.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
4- www.securityfocus.com/bid/29725nvdExploit
- www.shnews.de/change-lognvdVendor AdvisoryURL Repurposed
- exchange.xforce.ibmcloud.com/vulnerabilities/43123nvd
- www.exploit-db.com/exploits/5829nvd
News mentions
0No linked articles in our index yet.