Xampp Apache Distribution — known CVE vulnerabilities
Every CVE whose affected-product data names Xampp Apache Distribution, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2007-2079 — CVSS 9.3 (critical): The ADONewConnection Connect function in adodb.php in XAMPP 1.6.0a and earlier for Windows uses untrusted input for the database server…
CVE-2005-1078 — CVSS 7.5 (high): XAMPP 1.4.x has multiple default or null passwords, which allows attackers to gain privileges.
CVE-2007-2080 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in XAMPP 1.6.0a for Windows allow remote attackers to execute arbitrary SQL commands via unspecified…
CVE-2005-2043 — CVSS 5.0 (medium): Directory traversal vulnerability in XAMPP before 1.4.14 allows remote attackers to inject arbitrary HTML and PHP code via lang.php.
CVE-2005-1077 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in XAMPP 1.4.x allow remote attackers to inject arbitrary web script or HTML via (1)…