Vulnerabilities > Apachefriends > Xampp > 1.8.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-09-29 | CVE-2013-2586 | Cross-Site Scripting vulnerability in Apachefriends Xampp 1.8.1 XAMPP 1.8.1 does not properly restrict access to xampp/lang.php, which allows remote attackers to modify xampp/lang.tmp and execute cross-site scripting (XSS) attacks via the WriteIntoLocalDisk method. | 4.3 |