Reflected Cross-Site Scripting Vulnerability in XAMPP by Apache Friends
CVE-2019-8920

6.1MEDIUM

Key Information:

Vendor

Apachefriends

Status
Xampp
Vendor
CVE Published:
9 July 2019

What is CVE-2019-8920?

The vulnerability in XAMPP 1.7.0 arises from a reflected cross-site scripting issue in the iart.php file. Attackers can exploit this weakness to inject malicious scripts into web applications, potentially compromising user data and session integrity. This issue is related to CVE-2008-3569, highlighting the importance of web application security and the need for timely updates to protect against such attacks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://blog.lucideus.com/2019/07/xampp-170-reflected-cro...
x_refsource_MISC
http://www.securityfocus.com/bid/109120
vdb-entryx_refsource_BID

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.