7 matches found
CVE-2019-8924
XAMPP through 5.6.8 allows XSS via the cds-fpdf.php interpret or titel parameter. NOTE: This product is discontinued...
Design/Logic Flaw
XAMPP through 5.6.8 allows XSS via the cds-fpdf.php interpret or titel parameter. NOTE: This product is discontinued...
CVE-2019-8924
XAMPP through 5.6.8 allows XSS via the cds-fpdf.php interpret or titel parameter. NOTE: This product is discontinued...
CVE-2019-8924
CVE-2019-8924 affects XAMPP for Windows up to version 5.6.8, with a Cross‑Site Scripting (XSS) vulnerability in the cds-fpdf.php script. The vulnerability is triggered via the interpret or titel parameters, allowing script injection in affected deployments. The associated documents consistently n...
Sql injection
XAMPP through 5.6.8 and previous allows SQL injection via the cds-fpdf.php jahr parameter. NOTE: This product is discontinued...
CVE-2019-8923
XAMPP through 5.6.8 and previous allows SQL injection via the cds-fpdf.php jahr parameter. NOTE: This product is discontinued...
CVE-2019-8923
CVE-2019-8923 affects XAMPP 5.6.8 and earlier. The vulnerability is a SQL injection in the cds-fpdf.php jahr parameter, allowing remote input-based database querying due to insufficient input validation. Impact is listed as high to critical in sources (NVD CVSS 2.0/3.0), with potential for unauth...