Vulnerabilities (CVE)

Filtered by vendor Apache Friends Subscribe
Filtered by product Xampp
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-4450 1 Apache Friends 1 Xampp 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in adodb.php in XAMPP for Windows 1.6.8 allows remote attackers to inject arbitrary web script or HTML via the (1) dbserver, (2) host, (3) user, (4) password, (5) database, and (6) table parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2008-3569 1 Apache Friends 1 Xampp 2024-11-21 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in XAMPP 1.6.7, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the text parameter to (1) iart.php and (2) ming.php.