VYPR
Medium severity6.3NVD Advisory· Published Aug 8, 2025· Updated Jun 17, 2026

CVE-2025-50927

CVE-2025-50927

Description

A reflected cross-site scripting (XSS) vulnerability in the List All FTP User Function in EHCP v20.04.1.b allows authenticated attackers to execute arbitrary JavaScript via injecting a crafted payload into the ftpusername parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Easy Hosting Control Panel EHCP/EHCPdescription
  • EHCP/Ehcpllm-fuzzy
    Range: =20.04.1.b

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.