WampServer 3.0.6 installs two services called 'wampapache' and 'wampmysqld' with weak file permissions, running with SYSTEM privileges. Rated high severity (CVSS 7.5). Public exploit code available and no vendor patch available.
RCE
Privilege Escalation
Wampserver
NVD
Exploit-DB
CVSS 3.0
7.5
EPSS
0.3%
WampServer 3.0.6 has two files called 'wampmanager.exe' and 'unins000.exe' with a weak ACL for Modify. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
RCE
Privilege Escalation
Wampserver
NVD
CVSS 3.1
5.3
EPSS
0.2%