Vulnerabilities > Apachefriends > Xampp > High

DATE CVE VULNERABILITY TITLE RISK
2022-06-09 CVE-2017-20018 Uncontrolled Search Path Element vulnerability in Apachefriends Xampp 7.1.10Vc14
A vulnerability was found in XAMPP 7.1.1-0-VC14.
local
low complexity
apachefriends CWE-427
7.8
7.8
2022-05-23 CVE-2022-29376 Incorrect Default Permissions vulnerability in Apachefriends Xampp
Xampp for Windows v8.1.4 and below was discovered to contain insecure permissions for its install directory, allowing attackers to execute arbitrary code via overwriting binaries located in the directory.
network
low complexity
apachefriends CWE-276
8.8
8.8
2020-04-02 CVE-2020-11107 Incorrect Permission Assignment for Critical Resource vulnerability in Apachefriends Xampp
An issue was discovered in XAMPP before 7.2.29, 7.3.x before 7.3.16 , and 7.4.x before 7.4.4 on Windows.
network
low complexity
apachefriends CWE-732
8.8
8.8