WampServer 3.0.6 - Cross-Site Request Forgery

WampServer 3.0.6 - Cross-Site Request Forgery Exploit Title: WampServer 3.0.6 - Cross-Site Request Forgery Date: 2018-06-11 Exploit Author: L0RD Software Link: https://ufile.io/gpqh9 Vendor Homepage: http://www.wampserver.com/en/ Version: 3.0.6 - 64bit Tested on: Win 10 Description : An issue was...

Code injection

WampServer 3.0.6 has two files called 'wampmanager.exe' and 'unins000.exe' with a weak ACL for Modify. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system. To properly exploit this vulnerability, the local...

CVE-2016-10072

WampServer 3.0.6 has two files called 'wampmanager.exe' and 'unins000.exe' with a weak ACL for Modify. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system. To properly exploit this vulnerability, the local...

PT-2016-4559 · Wampserver · Wampserver

Name of the Vulnerable Software and Affected Versions: WampServer version 3.0.6 Description: The issue arises from weak file permissions in two services, 'wampapache' and 'wampmysqld', which run with SYSTEM privileges. This could allow a local, non-privileged user to execute arbitrary code with...