CVE-2008-6499
CVE-2008-6499 affects XAMPP 1.6.8, where security/xamppsecurity.php performs an extract operation on the SERVER superglobal. This allows remote attackers to spoof critical variables, demonstrated by altering REMOTE_ADDR to 127.0.0.1. The root cause is improper handling of server variables during ...