Apachefriends XAMPP 1.7.0

CPE Details

Apachefriends XAMPP 1.7.0
apachefriends
xampp
1.7.0
2019-07-10
12h07 +00:00
2019-07-10
12h07 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:apachefriends:xampp:1.7.0:*:*:*:*:*:*:*

Informations

Vendor

apachefriends

Product

xampp

Version

1.7.0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-0338 2024-02-02 09h13 +00:00 A buffer overflow vulnerability has been found in XAMPP affecting version 8.2.4 and earlier. An attacker could execute arbitrary code through a long file debug argument that controls the Structured Exception Handler (SEH).
9.8
Critique
CVE-2022-47637 2023-09-11 22h00 +00:00 The installer in XAMPP through 8.1.12 allows local users to write to the C:\xampp directory. Common use cases execute files under C:\xampp with administrative privileges.
6.7
Moyen
CVE-2022-29376 2022-05-23 18h16 +00:00 Xampp for Windows v8.1.4 and below was discovered to contain insecure permissions for its install directory, allowing attackers to execute arbitrary code via overwriting binaries located in the directory.
8.8
Haute
CVE-2020-11107 2020-04-02 15h44 +00:00 An issue was discovered in XAMPP before 7.2.29, 7.3.x before 7.3.16 , and 7.4.x before 7.4.4 on Windows. An unprivileged user can change a .exe configuration in xampp-contol.ini for all users (including admins) to enable arbitrary command execution.
8.8
Haute
CVE-2019-8920 2019-07-09 15h08 +00:00 iart.php in XAMPP 1.7.0 has XSS, a related issue to CVE-2008-3569.
6.1
Moyen
CVE-2019-8924 2019-05-16 23h06 +00:00 XAMPP through 5.6.8 allows XSS via the cds-fpdf.php interpret or titel parameter. NOTE: This product is discontinued.
6.1
Moyen
CVE-2019-8923 2019-05-14 13h46 +00:00 XAMPP through 5.6.8 and previous allows SQL injection via the cds-fpdf.php jahr parameter. NOTE: This product is discontinued.
9.8
Critique