Vulnerabilities > Wampserver > Wampserver > 3.1.1

DATE CVE VULNERABILITY TITLE RISK
2022-08-30 CVE-2022-36565 Unspecified vulnerability in Wampserver
Incorrect access control in the install directory (C:\Wamp64) of Wamp v3.2.6 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory.
network
low complexity
wampserver
8.8
8.8
2019-06-10 CVE-2019-11517 Cross-Site Request Forgery (CSRF) vulnerability in Wampserver
WampServer before 3.1.9 has CSRF in add_vhost.php because the synchronizer pattern implemented as remediation of CVE-2018-8817 was incomplete. 		5.8
5.8
2018-12-20 CVE-2018-1000848 Cross-site Scripting vulnerability in Wampserver
Wampserver version prior to version 3.1.5 contains a Cross Site Scripting (XSS) vulnerability in index.php localhost page that can result in very low.
network
low complexity
wampserver CWE-79
6.1
6.1
2018-03-25 CVE-2018-8817 Cross-Site Request Forgery (CSRF) vulnerability in Wampserver
Wampserver before 3.1.3 has CSRF in add_vhost.php.
network
low complexity
wampserver CWE-352
8.8
8.8
2018-03-19 CVE-2018-8732 Cross-site Scripting vulnerability in Wampserver 3.1.1
Cross-site scripting (XSS) vulnerability in WampServer 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the virtual_del parameter.
network
low complexity
wampserver CWE-79
5.4
5.4