Stop spreading BS information to people, XAMPP is nothing but php,mysql,phpmyadmin ,apache and all the things in 1.Its same and can be used for servers.It can be installed easily
You are saying this because you read this on their website : http://www.apachefriends.org/en/xampp-linux.html
and talking nonsense.
Those security issues can be fixed, its not big thing
Here a list of missing security in XAMPP:
The MySQL administrator (root) has no password.
The MySQL daemon is accessible via network.
ProFTPD uses the password "lampp" for user "nobody".
PhpMyAdmin is accessible via network.
Examples are accessible via network.
MySQL and Apache running under the same user (nobody).
All can be fixed easily so stop acting like a teabag without knowledge and spreading wrong information to others.You can use it for professional things, atleast for a mta server or a website but if you have a huge company than its other thing and you may consider different options.Internet is full of people like you who spread wrong information without knowledge.IF you dont know "shutup"!