if (!empty($exploits)) $severity_level = 'high'; $recommendations[] = 'Remove potential backdoors or malware';
| CVE | Component | Description | Status | |------|------------|--------------|--------| | | XAMPP Windows <= 5.6.20 | Unauthenticated arbitrary file read via /xampp/portswww.txt or .php backup files. Allows reading config files with credentials. | Patched | | CVE-2019-13383 | XAMPP Windows <= 7.3.7 | Local Privilege Escalation via insecure xampp-control.exe – arbitrary file write in C:\xampp directory. | Patched | | CVE-2015-5600 | XAMPP <= 1.8.3-5 | Default xampp directory password set to xampp – brute-force protection missing. | Patched | xampp exploit
If you must use XAMPP on a networked machine (not recommended for production), apply these fixes: if (!empty($exploits)) $severity_level = 'high'
Optimized by Seraphinite Accelerator