Max CVSS | 6.8 | Min CVSS | 5.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2008-6498 | 6.8 |
Cross-site request forgery (CSRF) vulnerability in security/xamppsecurity.php in XAMPP 1.6.8 allows remote attackers to hijack the authentication of users for requests that change a certain .htaccess password via the xampppasswd parameter.
|
29-09-2017 - 01:33 | 20-03-2009 - 00:30 | |
CVE-2008-6499 | 5.5 |
security/xamppsecurity.php in XAMPP 1.6.8 performs an extract operation on the SERVER superglobal array, which allows remote attackers to spoof critical variables, as demonstrated by setting the REMOTE_ADDR variable to 127.0.0.1.
|
29-09-2017 - 01:33 | 20-03-2009 - 00:30 |