Attack on Webdev Xampp XAMPP WebDAV vulnerability example in this OWASP slide - Web attack in the wild.
https://www.owasp.org/index.php/Spain/Meetings (Sepanyol lah pulak) Slide download :- https://www.owasp.org/images/a/a7/Web_attacks_in_the_wild_-_ap.pdf This is XAMPP latest vulnerability. http://www.apachefriends.org/f/viewtopic.php?f=16&t=43824 http://www.apachefriends.org/f/viewtopic.php?f=16&t=44140 Please patch annd secure your XAMPP installation http://www.apachefriends.org/en/xampp-windows.html#1221 As mentioned at another place, XAMPP is not meant for production use but only for developers in a development environment. XAMPP is configured is to be as open as possible and to allow the web developer anything he/she wants. For development environments this is great but in a production environment it could be fatal. _______________________________________________ OWASP-Malaysia mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-malaysia OWASP Malaysia Wiki http://www.owasp.my OWASP Malaysia Facebook http://www.facebook.com/OWASP.Malaysia OWASP Malaysia Twitter #owaspmy http://www.twitter.com/owaspmy
