Lucene search

Xampp Security Vulnerabilities

cve

CVE-2007-2079

The ADONewConnection Connect function in adodb.php in XAMPP 1.6.0a and earlier for Windows uses untrusted input for the database server hostname, which allows remote attackers to trigger a library buffer overflow and execute arbitrary code via a long host parameter, or have other unspecified...

7.8AI Score

0.102EPSS

2007-04-18 03:19 AM

cve

CVE-2007-2080

Multiple SQL injection vulnerabilities in XAMPP 1.6.0a for Windows allow remote attackers to execute arbitrary SQL commands via unspecified vectors in certain test...

8.5AI Score

0.001EPSS

2007-04-18 03:19 AM

cve

CVE-2005-2043

Directory traversal vulnerability in XAMPP before 1.4.14 allows remote attackers to inject arbitrary HTML and PHP code via...

6.9AI Score

0.004EPSS

2005-06-22 04:00 AM

cve

CVE-2005-1077

Multiple cross-site scripting (XSS) vulnerabilities in XAMPP 1.4.x allow remote attackers to inject arbitrary web script or HTML via (1) cds.php, (2) Guestbook-EN.pl, or (3)...

5.8AI Score

0.002EPSS

2005-04-12 04:00 AM

cve

CVE-2005-1078

XAMPP 1.4.x has multiple default or null passwords, which allows attackers to gain...

6.8AI Score

0.011EPSS

2005-04-12 04:00 AM