Xampp : Security Vulnerabilities, CVEs, Published In 2005
XAMPP 1.4.x has multiple default or null passwords, which allows attackers to gain privileges.
Max CVSS
7.5
EPSS Score
1.07%
Published
2005-04-12
Updated
2016-10-18
Directory traversal vulnerability in XAMPP before 1.4.14 allows remote attackers to inject arbitrary HTML and PHP code via lang.php.
Max CVSS
5.0
EPSS Score
0.47%
Published
2005-06-17
Updated
2008-09-05
Multiple cross-site scripting (XSS) vulnerabilities in XAMPP 1.4.x allow remote attackers to inject arbitrary web script or HTML via (1) cds.php, (2) Guestbook-EN.pl, or (3) phonebook.php.
Max CVSS
4.3
EPSS Score
0.23%
Published
2005-04-12
Updated
2016-10-18
3 vulnerabilities found