The host is running Xampp, which is prone to multiple cross site scripting vulnerabilities.

Successful exploitation could allow remote attackers to execute arbitrary HTML and script code. Impact Level : Application

Upgrade to Xampp Linux version 1.7.3 or later, For updates check, http://www.apachefriends.org/en/xampp-linux.html

The flaw is due the input passed to the parameter text in iart.php and ming.php files are not santised before being returned to the user.

Xampp Linux 1.6.7 and prior on Linux (All).

• http://www.securityfocus.com/archive/1/495096

---

Updated on 2015-03-25