CVE-2005-1077

Name of the Vulnerable Software and Affected Versions XAMPP versions 1.4.x

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via specific files, including (1) cds.php, (2) Guestbook-EN.pl, or (3) phonebook.php.

Recommendations For XAMPP versions 1.4.x, update to a version that includes fixes for these XSS vulnerabilities. As a temporary workaround, consider restricting access to the vulnerable files cds.php, Guestbook-EN.pl, and phonebook.php until a patch is available.