An issue exists in XAMPP prior to 7.2.29, 7.3.x prior to 7.3.16 , and 7.4.x prior to 7.4.4 on Windows. An unprivileged user can change a .exe configuration in xampp-contol.ini for all users (including admins) to enable arbitrary command execution.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apachefriends xampp |