Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published May 11, 2018· Updated Aug 5, 2024

CVE-2018-6362

CVE-2018-6362

Description

Easy Hosting Control Panel (EHCP) v0.37.12.b has XSS via the domainop action parameter, as demonstrated by reading the PHPSESSID cookie.

Affected products

1

Ebretscher/Ehcpinferred
Range: = 0.37.12.b

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

hyp3rlinx.altervista.org/advisories/EHCP-v0.37.12.b-XSS-COOKIE-THEFT.txtmitrex_refsource_MISC
packetstormsecurity.com/files/147554/Easy-Hosting-Control-Panel-0.37.12.b-Cross-Site-Scripting-Cookie-Theft.htmlmitrex_refsource_MISC

News mentions

0

No linked articles in our index yet.