xampp – WindowsTechs.com

if mysql server is not running, is it still possible somebody gain access to my database from outside LAN (hack my database without my consent?)

Posted on August 26, 2024 by John Z

I am using phpmyadmin running on xampp windows in a LAN environment. I want to find some ultimate secure solution for my database. So I am not running mysql (showing Stop in xampp control panel), is it still possible someone gain access to… Continue reading if mysql server is not running, is it still possible somebody gain access to my database from outside LAN (hack my database without my consent?)→

Can you perform a penetration test on a web application that is running on local host and using an XAMPP server? [closed]

Posted on March 21, 2023 by Mike

I created a basic website that includes a login and signup system. The website uses a mySQL server as the backend to store login information. I want to use Kali Linux to perform a white box test on it as a project for class.
Is this even p… Continue reading Can you perform a penetration test on a web application that is running on local host and using an XAMPP server? [closed]→

Can I have phpMyAdmin on a 2018 home laptop? [closed]

Posted on February 28, 2023 by Honzoraptor007

How does this work – will having a database ruin my computer performance in any way? And I don’t mean anything about security just laptop perofrmance. Thanks for answer.

Continue reading Can I have phpMyAdmin on a 2018 home laptop? [closed]→

SQLMAP Redirect using xampp

Posted on April 19, 2020 by amsyrfkri

I am learning SQLi using sqlmap and xampp.

I set up my lab the same way as per tutorial but when I run

sqlmap.py -u “http://localhost/bwapp/sqli_1.php?title=1*”

the error got 302 redirected to

http://localhost:80/bwapp/login.php

a… Continue reading SQLMAP Redirect using xampp→

Installing xampp on virtual box?

Posted on April 9, 2020 by negil20

I started learning PHP and I wanted to practice PHP code using xampp or wamp server. But after reading this and doing some google research,I thought that installing server software on my home pc might be dangerous. I thought it would be … Continue reading Installing xampp on virtual box?→

How to make xammp more secure?

Posted on November 21, 2019 by theSpeciamOne

I know that there are many problems with xammp that could allow someone to hack into my computer however I don’t know how to prevent it. I have the default settings on xammp so far. What should I do?

Continue reading How to make xammp more secure?→

Block access from an IP that tries too many requests to Apache server XAMPP [duplicate]

Posted on September 16, 2019 by Giorgi Shonia

This question already has an answer here:

How can I block an IP, if I’m getting many http requests in a second?

3 answers

I have a VPS server with Windows 2016 Server and use XAMPP as Apache Server. Yesterday I receied too many requests from 1-2 IPs. How can I detect how many requests I get per 10 seconds and block them?

Continue reading Block access from an IP that tries too many requests to Apache server XAMPP [duplicate]→

scan web site show PHP sessions error

Posted on August 26, 2017 by max

I user opencart v2.3.0.2 and after finished my site I use a scanner to scan my website but after while from starting scaning I get this error :

Fatal error: session_set_save_handler(): Session handler’s function
table is corrupt in \system\library\session.php on line 16

i use many scanner some times vega , wa3f , Acunetix .

I use XAMPP as a web server

the session file where he show me the problem :

adaptor = new $class($this);
        } else {
            throw new \Exception('Error: Could not load session adaptor ' . $adaptor . ' session!');
        }       

        if ($this->adaptor) {
            session_set_save_handler($this->adaptor);
        }

        if ($this->adaptor && !session_id()) {
            ini_set('session.use_only_cookies', 'Off');
            ini_set('session.use_cookies', 'On');
            ini_set('session.use_trans_sid', 'Off');
            ini_set('session.cookie_httponly', 'On');

            if (isset($_COOKIE[session_name()]) && !preg_match('/^[a-zA-Z0-9,\-]{22,52}$/', $_COOKIE[session_name()])) {
                exit('Error: Invalid session ID!');
            }

            session_set_cookie_params(0, '/');
            session_start();
        }           
    }

    public function start($key = 'default', $value = '') {
        if ($value) {
            $this->session_id = $value;
        } elseif (isset($_COOKIE[$key])) {
            $this->session_id = $_COOKIE[$key];
        } else {
            $this->session_id = $this->createId();
        }   

        if (!isset($_SESSION[$this->session_id])) {
            $_SESSION[$this->session_id] = array();
        }

        $this->data = &$_SESSION[$this->session_id];

        if ($key != 'PHPSESSID') {
            setcookie($key, $this->session_id, ini_get('session.cookie_lifetime'), ini_get('session.cookie_path'), ini_get('session.cookie_domain'), ini_get('session.cookie_secure'), ini_get('session.cookie_httponly'));
        }

        return $this->session_id;
    }   

    public function getId() {
        return $this->session_id;
    }

    public function createId() {
        if (version_compare(phpversion(), '5.5.4', '>') == true) {
            return $this->adaptor->create_sid();
        } elseif (function_exists('random_bytes')) {
            return substr(bin2hex(random_bytes(26)), 0, 26);
        } elseif (function_exists('openssl_random_pseudo_bytes')) {
            return substr(bin2hex(openssl_random_pseudo_bytes(26)), 0, 26);
        } else {
            return substr(bin2hex(mcrypt_create_iv(26, MCRYPT_DEV_URANDOM)), 0, 26);
        }
    }

    public function destroy($key = 'default') {
        if (isset($_SESSION[$key])) {
            unset($_SESSION[$key]);
        }

        setcookie($key, '', time() - 42000, ini_get('session.cookie_path'), ini_get('session.cookie_domain'));
    }
}

please ask for any information you may need to help .
also suggest any tags will be so helpful

Continue reading scan web site show PHP sessions error→

XAMPP/Chrome net::ERR_CERT_INVALID on VALID Certificate Chain

Posted on May 4, 2017 by Jimwel Anobong

I have set up my own Root CA and Intermediate CAs for my local sites (virtual sites). I also have installed them to trusted certificates in my computer and also the intermediate CAs on their own folder in the cert market of m… Continue reading XAMPP/Chrome net::ERR_CERT_INVALID on VALID Certificate Chain→

Is redirecting in htaccess providing enough security for sensitive pages?

Posted on March 5, 2017 by vakus

I made files with mysql database login details. Using .htaccess, I redirect every user from /Config/config.php to /index.php. I am wondering whatever this is secure enough – this means whatever is enough to stop users from vi… Continue reading Is redirecting in htaccess providing enough security for sensitive pages?→