Exploit Unloosen : Xampp 1.7.3 Multiple Vulnerabilities

Exploit Title: XAMPP <= 1.7.3 multiple vulnerabilites

Author: TheLeader Software Link: http://www.apachefriends.org/en/xampp-windows.html Affected Version: 1.7.3 together with prior Tested on Windows XP Hebrew, Service Pack 3

I. File disclosure : XAMPP is vulnerable to a remote file disclosure attack. The vulnerability exists inside the spider web application supplied alongside XAMPP.
II. Cross Site Scripting : It is interesting to encounter the same programming mistake Pb to simply about other safety vulnerability.Some PHP scripts inwards the XAMPP dir rely on $_SERVER['PHP_SELF'] for retrieving the "action" tag for HTML forms.This tin last exploited to perform Cross Site Scripting attacks.

Exploit Link : http://inj3ct0r.com/exploits/14686

Share This :