XAMPP 1.7.7 Cross Site Scripting

Posted on 07 November 2011

XAMPP suffers from multiple cross site scripting issues in several scripts that use the 'PHP_SELF' variable. Attackers can exploit these weaknesses to execute arbitrary HTML and script code in a user's browser session.