WampServer 3.0.6 has two files called 'wampmanager.exe' and 'unins000.exe' with a weak ACL for Modify. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
RCE
Privilege Escalation
Wampserver
NVD
CVSS 3.1
5.3
EPSS
0.2%