6 matches found
XAMPP < 1.8.2 Local Write Access Vulnerability (Oct 2014) - Active Check
XAMPP is prone to an arbitrary file download vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apachefriends:xampp";...
CVE-2013-2586
XAMPP 1.8.1 does not properly restrict access to xampp/lang.php, which allows remote attackers to modify xampp/lang.tmp and execute cross-site scripting XSS attacks via the WriteIntoLocalDisk method...
CVE-2013-2586
CVE-2013-2586 affects XAMPP 1.8.1. The /xampp/lang.php page fails to restrict access, letting an unauthenticated user write to lang.tmp on local disk and trigger XSS via WriteIntoLocalDisk. Multiple sources (NVD/OpenVAS/Exploit-DB/Seebug) corroborate remote write access and local file modificatio...
XAMPP 1.8.1 Local Write Access Vulnerability
============================================= INTERNET SECURITY AUDITORS ALERT 2013-007 - Original release date: March 14th, 2013 - Last revised: March 19th, 2013 - Discovered by: Manuel Garcia Cardenas - Severity: 6,8/10 CVSS Base Score - CVE-ID: CVE-2013-2586...
XAMPP 1.8.1 - lang.php?WriteIntoLocalDisk method Local Write Access
XAMPP 1.8.1 - lang.php?WriteIntoLocalDisk method Local Write Access ============================================= INTERNET SECURITY AUDITORS ALERT 2013-007 - Original release date: March 14th, 2013 - Last revised: March 19th, 2013 - Discovered by: Manuel García Cárdenas - Severity: 6,8/10 CVSS Ba...
XAMPP 1.8.1 Local Write Access
============================================= INTERNET SECURITY AUDITORS ALERT 2013-007 - Original release date: March 14th, 2013 - Last revised: March 19th, 2013 - Discovered by: Manuel García Cárdenas - Severity: 6,8/10 CVSS Base Score - CVE-ID: CVE-2013-2586...