Vulnerability Details : CVE-2005-2043
Directory traversal vulnerability in XAMPP before 1.4.14 allows remote attackers to inject arbitrary HTML and PHP code via lang.php.
Vulnerability category: Directory traversal
Exploit prediction scoring system (EPSS) score for CVE-2005-2043
Probability of exploitation activity in the next 30 days: 0.47%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 72 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2005-2043
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:P/A:N |
10.0
|
2.9
|
NIST |
References for CVE-2005-2043
Products affected by CVE-2005-2043
- cpe:2.3:a:xampp:apache_distribution:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.4:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.5:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.11:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.12:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.8:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.9:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.13:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.10:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.10a:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.6:*:*:*:*:*:*:*
- cpe:2.3:a:xampp:apache_distribution:1.4.7:*:*:*:*:*:*:*