Easy Hosting Control Panel EHCP v20.04.1.b was discovered to contain a SQL injection vulnerability via the id parameter in the Change Settings function.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Tue, 12 Aug 2025 12:15:00 +0000

Type Values Removed Values Added
First Time appeared Ehcp
Ehcp easy Hosting Control Panel
Vendors & Products Ehcp
Ehcp easy Hosting Control Panel

Fri, 08 Aug 2025 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-89
Metrics cvssV3_1

{'score': 4.8, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 08 Aug 2025 17:30:00 +0000

Type Values Removed Values Added
Description Easy Hosting Control Panel EHCP v20.04.1.b was discovered to contain a SQL injection vulnerability via the id parameter in the Change Settings function.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2025-08-08T17:39:32.574Z

Reserved: 2025-06-16T00:00:00.000Z

Link: CVE-2025-50928

cve-icon Vulnrichment

Updated: 2025-08-08T17:39:00.958Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-08-08T18:15:28.177

Modified: 2025-08-08T20:30:18.180

Link: CVE-2025-50928

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-08-12T11:47:22Z