Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apachefriends xampp 1.6.8 vulnerabilities and exploits
(subscribe to this query)
690
VMScore
CVE-2008-6498
Cross-site request forgery (CSRF) vulnerability in security/xamppsecurity.php in XAMPP 1.6.8 allows remote malicious users to hijack the authentication of users for requests that change a certain .htaccess password via the xampppasswd parameter.
Apachefriends Xampp 1.6.8
2 EDB exploits
668
VMScore
CVE-2009-0919
XAMPP installs multiple packages with insecure default passwords, which makes it easier for remote malicious users to obtain access via (1) the "lampp" default password for the "nobody" account within the included ProFTPD installation, (2) a blank default pass...
Apachefriends Xampp 1.4.9
Apachefriends Xampp 1.5.0
Apachefriends Xampp 1.5.2
Apachefriends Xampp 1.4.3
Apachefriends Xampp 1.4.12
Apachefriends Xampp 0.6.3
Apachefriends Xampp 1.6.0
Apachefriends Xampp 1.0.1
Apachefriends Xampp 1.0
Apachefriends Xampp 0.6.2
Apachefriends Xampp 0.3
Apachefriends Xampp 1.4.11
Apachefriends Xampp 1.7.1
Apachefriends Xampp 0.6
Apachefriends Xampp 1.6.4
Apachefriends Xampp 1.4.15
Apachefriends Xampp 0.7.4
Apachefriends Xampp 1.5.4a
Apachefriends Xampp 1.4.6
Apachefriends Xampp Development
Apachefriends Xampp 1.7
Apachefriends Xampp 1.6.5
555
VMScore
CVE-2008-6499
security/xamppsecurity.php in XAMPP 1.6.8 performs an extract operation on the SERVER superglobal array, which allows remote malicious users to spoof critical variables, as demonstrated by setting the REMOTE_ADDR variable to 127.0.0.1.
Apachefriends Xampp 1.6.8
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started