exploitDog

GHSA-q7p4-25jf-fj7w

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

Easy Hosting Control Panel (EHCP) v0.37.12.b, when using a local MySQL server, allows attackers to change passwords of arbitrary database users by leveraging failure to ask for the current password.

Easy Hosting Control Panel (EHCP) v0.37.12.b, when using a local MySQL server, allows attackers to change passwords of arbitrary database users by leveraging failure to ask for the current password.

Ссылки

EPSS

Процентиль: 22%

0.00072

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2018-6617

CVSS3: 7.8

nvd

больше 7 лет назад

Easy Hosting Control Panel (EHCP) v0.37.12.b, when using a local MySQL server, allows attackers to change passwords of arbitrary database users by leveraging failure to ask for the current password.

EPSS

Процентиль: 22%

0.00072

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-287