1115 matches found
XAMPP 3.3.0 Buffer Overflow
Exploit Title: XAMPP v3.3.0 — '.ini' Buffer Overflow Unicode + SEH Date: 2023-10-26 Author: Talson @Ripp3rdoc Software Link: https://sourceforge.net/projects/xampp/files/XAMPP%20Windows/8.0.28/xampp-windows-x64-8.0.28-0-VS16-installer.exe Version: 3.3.0 Tested on: Windows 11 CVE-2023-46517 \ / \ ...
XAMPPv3.3.0-BOF
XAMPPv3.3.0-BOF Proof-of-Concept exploit code for XAMPP v3.3.0...
PT-2023-6580 · Apache Friends · Xampp
Name of the Vulnerable Software and Affected Versions: XAMPP affected versions not specified Description: The issue is caused by a buffer overflow, allowing a remote attacker to potentially cause a denial of service. Recommendations: At the moment, there is no information about a newer version th...
CVE-2022-47637
The installer in XAMPP through 8.1.12 allows local users to write to the C:\xampp directory. Common use cases execute files under C:\xampp with administrative privileges...
CVE-2022-47637
The installer in XAMPP through 8.1.12 allows local users to write to the C:\xampp directory. Common use cases execute files under C:\xampp with administrative privileges...
CVE-2022-47637
The installer in XAMPP through 8.1.12 allows local users to write to the C:\xampp directory. Common use cases execute files under C:\xampp with administrative privileges...
Directory traversal
The installer in XAMPP through 8.1.12 allows local users to write to the C:\xampp directory. Common use cases execute files under C:\xampp with administrative privileges...
CVE-2022-47637
CVE-2022-47637 affects the XAMPP Windows installer up to and including version 8.1.12. The installer allows local users to write to the C:\xampp directory, enabling potential execution of files under C:\xampp with administrative privileges. The Red Hat/PRION/PT-security entries corroborate the sa...
CVE-2022-47637
The installer in XAMPP through 8.1.12 allows local users to write to the C:\xampp directory. Common use cases execute files under C:\xampp with administrative privileges...
CVE-2022-47637
The installer in XAMPP through 8.1.12 allows local users to write to the C:\xampp directory. Common use cases execute files under C:\xampp with administrative privileges...
PT-2023-15447 · Apache Friends · Xampp
Name of the Vulnerable Software and Affected Versions: XAMPP versions 8.1.12 and earlier Description: The issue allows local users to write to the C:xampp directory. In common use cases, files under C:xampp are executed with administrative privileges. Recommendations: For XAMPP versions 8.1.12 an...
Uvdesk 1.1.4 - Stored XSS (Authenticated) Vulnerability
Exploit Title: Uvdesk 1.1.4 - Stored XSS Authenticated Exploit Author: Hubert Wojciechowski Contact Author: email protected Vendor Homepage: https://www.uvdesk.com/ Software Link: https://github.com/MegaTKC/AeroCMS Version: 1.1.4 Testeted on: Windows 10 using XAMPP, Apache/2.4.48 Win64...
Uvdesk 1.1.4 - Stored XSS (Authenticated)
Exploit Title: Uvdesk 1.1.4 - Stored XSS Authenticated Date: 14/08/2023 Exploit Author: Hubert Wojciechowski Contact Author: [email protected] Vendor Homepage: https://www.uvdesk.com/ Software Link: https://github.com/MegaTKC/AeroCMS Version: 1.1.4 Testeted on: Windows 10 using XAMPP,...
XAMPP 8.2.4 - Unquoted Path Vulnerability
Exploit Title: XAMPP 8.2.4 - Unquoted Path Exploit Author: Andrey Stoykov Version: 8.2.4 Software Link: https://sourceforge.net/projects/xampp/files/XAMPP%20Windows/8.2.4/xampp-windows-x64-8.2.4-0-VS16-installer.exe Tested on: Windows Server 2022 Blog: http://msecureltd.blogspot.com/ Steps to...
News Portal v4.0 - SQL Injection (Unauthorized) Vulnerability
Exploit Title: News Portal v4.0 - SQL Injection Unauthorized Exploit Author: Hubert Wojciechowski Contact Author: email protected Vendor Homepage: https://phpgurukul.com/news-portal-project-in-php-and-mysql/c Software Link: https://phpgurukul.com/?sdmprocessdownload=1&downloadid=7643 Version: 4.0...
XAMPP 8.2.4 - Unquoted Path
Exploit Title: XAMPP 8.2.4 - Unquoted Path Date: 07/2023 Exploit Author: Andrey Stoykov Version: 8.2.4 Software Link: https://sourceforge.net/projects/xampp/files/XAMPP%20Windows/8.2.4/xampp-windows-x64-8.2.4-0-VS16-installer.exe Tested on: Windows Server 2022 Blog: http://msecureltd.blogspot.com...
News Portal v4.0 - SQL Injection (Unauthorized)
Exploit Title: News Portal v4.0 - SQL Injection Unauthorized Date: 09/07/2023 Exploit Author: Hubert Wojciechowski Contact Author: [email protected] Vendor Homepage: https://phpgurukul.com/news-portal-project-in-php-and-mysql/c Software Link:...
XAMPP 8.2.4 Unquoted Service Path
Exploit Title: XAMPP 8.2.4 - Unquoted Path Date: 07/2023 Exploit Author: Andrey Stoykov Version: 8.2.4 Software Link: https://sourceforge.net/projects/xampp/files/XAMPP%20Windows/8.2.4/xampp-windows-x64-8.2.4-0-VS16-installer.exe Tested on: Windows Server 2022 Blog: http://msecureltd.blogspot.com...
Teachers Record Management System 1.0 Validation Bypass
Exploit Title: Teachers Record Management System 1.0 – File Upload Type Validation Date: 17-01-2023 EXPLOIT-AUTHOR: AFFAN AHMED Vendor Homepage: Software Link: Version: 1.0 Tested on: Windows 11 + XAMPP CVE : CVE-2023-3187 =============================== STEPSTOREPRODUCE...
Sales Tracker Management System 1.0 HTML Injection
Exploit Title: Sales Tracker Management System v1.0 – Multiple Vulnerabilities Google Dork: NA Date: 09-06-2023 EXPLOIT-AUTHOR: AFFAN AHMED Vendor Homepage: Software Link: Version: 1.0 Tested on: Windows 11 + XAMPP CVE : CVE-2023-3184 ============================== CREDENTIAL TO USE...