Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in security/xamppsecurity.php in XAMPP 1.6.8 allows remote attackers to hijack the authentication of users for requests that change a certain .htaccess password via the xampppasswd parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apachefriends XAMPP 'security/xamppsecurity.php'多个跨站脚本攻击漏洞
Vulnerability Description
XAMPP是一个易于安装的Apache web服务器集成包(MySQL和PHP,Perl中,FTP服务器和phpMyAdmin),并支持各种操作系统包括:Linux,Solaris,Windows和Mac OS X。 XAMPP 1.6.8版本的security/xamppsecurity.php中存在跨站请求伪造漏洞。远程攻击者可以借助xampppasswd参数,劫持用户的认证信息以要求更改某一个.htaccess密码。
CVSS Information
N/A
Vulnerability Type
N/A