CVE-2025-50927 Information
Aug 09, 2025
cve
Description
A reflected cross-site scripting (XSS) vulnerability in the List All FTP User Function in EHCP v20.04.1.b allows authenticated attackers to execute arbitrary JavaScript via injecting a crafted payload into the ftpusername parameter.
Reference
https://packetstorm.news/files/id/207908 https://www.ehcp.net/?p=402
Related CNNVD
CNNVD-202511-2354 (Published: 2025-11-20)
Share on: