Medium severity6.3NVD Advisory· Published Aug 8, 2025· Updated Jun 17, 2026
CVE-2025-50927
CVE-2025-50927
Description
A reflected cross-site scripting (XSS) vulnerability in the List All FTP User Function in EHCP v20.04.1.b allows authenticated attackers to execute arbitrary JavaScript via injecting a crafted payload into the ftpusername parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Easy Hosting Control Panel EHCP/EHCPdescription
Patches
Vulnerability mechanics
References
2- packetstorm.news/files/id/207908nvdBroken Link
- www.ehcp.netnvdProduct
News mentions
0No linked articles in our index yet.