1.8.1

DATE	CVE	VULNERABILITY TITLE	RISK
2014-09-29	CVE-2013-2586	Cross-Site Scripting vulnerability in Apachefriends Xampp 1.8.1 XAMPP 1.8.1 does not properly restrict access to xampp/lang.php, which allows remote attackers to modify xampp/lang.tmp and execute cross-site scripting (XSS) attacks via the WriteIntoLocalDisk method. network apachefriends CWE-79	4.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.