Weak Hashing Algorithm and Lack of Salt in EHCP v0.37.12.b Expose Database Passwords to Attackers

Weak Hashing Algorithm and Lack of Salt in EHCP v0.37.12.b Expose Database Passwords to Attackers

CVE-2018-6619 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

Easy Hosting Control Panel (EHCP) v0.37.12.b makes it easier for attackers to crack database passwords by leveraging use of a weak hashing algorithm without a salt.

Learn more about our Web Application Penetration Testing UK.