Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2014/10/10 12:0 a.m.30 views

XAMPP < 1.8.2 Local Write Access Vulnerability (Oct 2014) - Active Check

XAMPP is prone to an arbitrary file download vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apachefriends:xampp";...

4.3CVSS6.5AI score0.0521EPSS
Exploits6References3
Cvelist
Cvelist
added 2014/09/29 10:0 p.m.33 views

CVE-2013-2586

XAMPP 1.8.1 does not properly restrict access to xampp/lang.php, which allows remote attackers to modify xampp/lang.tmp and execute cross-site scripting XSS attacks via the WriteIntoLocalDisk method...

5.8AI score0.0521EPSS
Exploits6References6
CVE
CVE
added 2014/09/29 10:0 p.m.66 views

CVE-2013-2586

CVE-2013-2586 affects XAMPP 1.8.1. The /xampp/lang.php page fails to restrict access, letting an unauthenticated user write to lang.tmp on local disk and trigger XSS via WriteIntoLocalDisk. Multiple sources (NVD/OpenVAS/Exploit-DB/Seebug) corroborate remote write access and local file modificatio...

4.3CVSS5.8AI score0.0521EPSS
Exploits6References6Affected Software1
securityvulns
securityvulns
added 2013/10/01 12:0 a.m.112 views

XAMPP 1.8.1 Local Write Access Vulnerability

============================================= INTERNET SECURITY AUDITORS ALERT 2013-007 - Original release date: March 14th, 2013 - Last revised: March 19th, 2013 - Discovered by: Manuel Garcia Cardenas - Severity: 6,8/10 CVSS Base Score - CVE-ID: CVE-2013-2586...

4.3CVSS0.5AI score0.0521EPSS
Exploits6
exploitpack
exploitpack
added 2013/09/30 12:0 a.m.36 views

XAMPP 1.8.1 - lang.php?WriteIntoLocalDisk method Local Write Access

XAMPP 1.8.1 - lang.php?WriteIntoLocalDisk method Local Write Access ============================================= INTERNET SECURITY AUDITORS ALERT 2013-007 - Original release date: March 14th, 2013 - Last revised: March 19th, 2013 - Discovered by: Manuel García Cárdenas - Severity: 6,8/10 CVSS Ba...

4.3CVSS6.5AI score0.0521EPSS
Exploits6
Packet Storm
Packet Storm
added 2013/09/26 12:0 a.m.63 views

XAMPP 1.8.1 Local Write Access

============================================= INTERNET SECURITY AUDITORS ALERT 2013-007 - Original release date: March 14th, 2013 - Last revised: March 19th, 2013 - Discovered by: Manuel García Cárdenas - Severity: 6,8/10 CVSS Base Score - CVE-ID: CVE-2013-2586...

4.3CVSS0.0521EPSS
Exploits6
Rows per page
Query Builder