Lucene search
HistoryMar 20, 2009 - 12:30 a.m.
CVE-2008-6498
cve-2008-6498
xampp
csrf
vulnerability
security
nvd
.htaccess
7.3 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.005 Low
EPSS
Percentile
77.3%
Cross-site request forgery (CSRF) vulnerability in security/xamppsecurity.php in XAMPP 1.6.8 allows remote attackers to hijack the authentication of users for requests that change a certain .htaccess password via the xampppasswd parameter.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apachefriends:xampp | apachefriends xampp | eq | 1.6.8 |
Related
prion
prion
Cross site request forgery (csrf)
2009-03-20 00:30:00
cvelist
cvelist
CVE-2008-6498
2009-03-20 00:00:00
openvas
openvas
XAMPP Multiple CSRF Vulnerabilities
2009-03-30 00:00:00
XAMPP Multiple Cross-Site Request Forgery Vulnerability
2009-03-30 00:00:00
7.3 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.005 Low
EPSS
Percentile
77.3%
Related for CVE-2008-6498