PT-2018-17673 · Ehcp · Easy Hosting Control Panel

Published

2018-05-11

Updated

2018-06-13

CVE-2018-6619

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Easy Hosting Control Panel (EHCP) version 0.37.12.b

Description The issue makes it easier for attackers to crack database passwords by leveraging the use of a weak hashing algorithm without a salt.

Recommendations For Easy Hosting Control Panel (EHCP) version 0.37.12.b, consider updating to a version that utilizes a stronger hashing algorithm with a salt to mitigate the risk of password cracking.

Exploit

Fix

Use of a Broken Cryptographic Algorithm

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-327

Related Identifiers

CVE-2018-6619

Affected Products

Easy Hosting Control Panel

PT-2018-17673 · Ehcp · Easy Hosting Control Panel

CVE-2018-6619

Weakness Enumeration

Related Identifiers

Affected Products

References · 4