Vulnerabilities > Ehcp > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-05-11 CVE-2018-6362 Cross-site Scripting vulnerability in Ehcp Easy Hosting Control Panel 0.37.12.B
Easy Hosting Control Panel (EHCP) v0.37.12.b has XSS via the domainop action parameter, as demonstrated by reading the PHPSESSID cookie.
network
low complexity
ehcp CWE-79
6.1
6.1
2018-05-11 CVE-2018-6361 Cross-site Scripting vulnerability in Ehcp Easy Hosting Control Panel 0.37.12.B
Easy Hosting Control Panel (EHCP) v0.37.12.b has XSS via the op parameter, as demonstrated by adding a backdoor FTP account.
network
low complexity
ehcp CWE-79
6.1
6.1