Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
apache http server 1.3.1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2000-1205
Cross site scripting vulnerabilities in Apache 1.3.0 through 1.3.11 allow remote attackers to execute script as other web site visitors via (1) the printenv CGI (printenv.pl), which does not encode its output, (2) pages generated by the ap_send_error_response function such as a...
Apache Http Server 1.3.0
Apache Http Server 1.3.5
Apache Http Server 1.3.6
Apache Http Server 1.3.1
Apache Http Server 1.3.10
Apache Http Server 1.3.7
Apache Http Server 1.3.8
Apache Http Server 1.3.11
Apache Http Server 1.3.2
Apache Http Server 1.3.9
Apache Http Server 1.3.3
Apache Http Server 1.3.4
4.6
CVSSv2
CVE-2002-1658
Buffer overflow in htdigest in Apache 1.3.26 and 1.3.27 may allow attackers to execute arbitrary code via a long user argument. NOTE: since htdigest is normally only locally accessible and not setuid or setgid, there are few attack vectors which would lead to an escalation of...
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.1
Apache Http Server 1.3.11
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.6
Apache Http Server 1.3.9
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.3
Apache Http Server 1.3.4
7.5
CVSSv2
CVE-2003-0993
mod_access in Apache 1.3 before 1.3.30, when running big-endian 64-bit platforms, does not properly parse Allow/Deny rules using IP addresses without a netmask, which could allow remote attackers to bypass intended access restrictions....
Apache Http Server 1.3
Apache Http Server 1.3.1
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.3
Apache Http Server 1.3.4
Apache Http Server 1.3.18
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.6
Apache Http Server 1.3.7
Apache Http Server 1.3.28
Apache Http Server 1.3.29
Apache Http Server 1.3.14
Apache Http Server 1.3.17
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.9
6.8
CVSSv2
CVE-2010-0010
Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c in mod_proxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a large chunk size...
Apache Http Server 1.3.38
Apache Http Server 1.3.37
Apache Http Server 1.3.30
Apache Http Server 1.3.3
Apache Http Server 1.3.22
Apache Http Server 1.3.20
Apache Http Server 1.3.13
Apache Http Server 1.3.12
Apache Http Server 1.2.5
Apache Http Server 1.2.4
Apache Http Server 1.3.36
Apache Http Server 1.3.35
Apache Http Server 1.3.29
Apache Http Server 1.3.28
Apache Http Server 1.3.27
Apache Http Server 1.3.2
Apache Http Server 1.3.19
Apache Http Server 1.3.11
Apache Http Server 1.3.10
Apache Http Server 1.2
Apache Http Server 1.1
Apache Http Server 1.0.5
Apache Http Server 1.3.4
Apache Http Server 1.3.39
Apache Http Server 1.3.34
Apache Http Server 1.3.33
Apache Http Server 1.3.26
Apache Http Server 1.3.25
Apache Http Server 1.3.18
Apache Http Server 1.3.17
Apache Http Server 1.3.1
Apache Http Server 1.3.0
Apache Http Server 1.0.3
Apache Http Server 1.0
Apache Http Server 1.3.40
Apache Http Server
Apache Http Server 1.3.32
Apache Http Server 1.3.31
Apache Http Server 1.3.24
Apache Http Server 1.3.23
Apache Http Server 1.3.15
Apache Http Server 1.3.14
Apache Http Server 1.3
Apache Http Server 1.2.6
Apache Http Server 0.8.14
Apache Http Server 0.8.11
5
CVSSv2
CVE-2004-0263
PHP 4.3.4 and earlier in Apache 1.x and 2.x (mod_php) can leak global variables between virtual hosts that are handled by the same Apache child process but have different settings, which could allow remote attackers to obtain sensitive information....
Apache Http Server 1.0.3
Apache Http Server 1.0.5
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.2
Apache Http Server 1.2.5
Apache Http Server 1.3.18
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.28
Apache Http Server 1.3.29
Apache Http Server 2.0.28
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.9
Ibm Http Server 1.3.19
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.6
Apache Http Server 1.3.7
Apache Http Server 2.0.36
Apache Http Server 2.0.37
Apache Http Server 2.0.45
Apache Http Server 2.0.46
Apache Http Server 1.1
Apache Http Server 1.1.1
Apache Http Server 1.3.14
Apache Http Server 1.3.17
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.9
Apache Http Server 2.0
Apache Http Server 2.0.38
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.47
Apache Http Server 2.0.48
Apache Http Server 1.0
Apache Http Server 1.0.2
Apache Http Server 1.3
Apache Http Server 1.3.1
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.3
Apache Http Server 1.3.4
Apache Http Server 2.0.32
Apache Http Server 2.0.35
Apache Http Server 2.0.43
Apache Http Server 2.0.44
7.8
CVSSv2
CVE-2002-2272
Tomcat 4.0 through 4.1.12, using mod_jk 1.2.1 module on Apache 1.3 through 1.3.27, allows remote attackers to cause a denial of service (desynchronized communications) via an HTTP GET request with a Transfer-Encoding chunked field with invalid values....
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.3.13
Apache Http Server 1.3.14
Apache Http Server 1.3.20
Apache Http Server 1.3.22
Apache Tomcat 4.0.2
Apache Tomcat 4.0.3
Apache Tomcat 4.1.12
Apache Tomcat 4.1.2
Apache Http Server 1.3
Apache Http Server 1.3.0
Apache Http Server 1.3.15
Apache Http Server 1.3.16
Apache Http Server 1.3.23
Apache Http Server 1.3.24
Apache Tomcat 4.0.4
Apache Tomcat 4.0.5
Apache Tomcat 4.1.3
Apache Http Server 1.3.19
Apache Http Server 1.3.2
Apache Tomcat 4.0.0
Apache Tomcat 4.0.1
Apache Tomcat 4.1.1
Apache Tomcat 4.1.10
Apache Http Server 1.3.1
Apache Http Server 1.3.10
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.25
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Tomcat 4.0.6
Apache Tomcat 4.1.0
Apache Tomcat 4.1.9
1 EDB exploit available
7.2
CVSSv2
CVE-2003-0542
Multiple stack-based buffer overflows in (1) mod_alias and (2) mod_rewrite for Apache before 1.3.29 allow attackers to create configuration files to cause a denial of service (crash) or execute arbitrary code via a regular expression with more than 9 captures....
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.26
Apache Http Server 2.0
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.27
Apache Http Server 1.3.28
Apache Http Server 2.0.32
Apache Http Server 2.0.35
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 1.3.1
Apache Http Server 1.3.11
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.6
Apache Http Server 1.3.9
Apache Http Server 2.0.38
Apache Http Server 2.0.39
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.28
Apache Http Server 2.0.40
Apache Http Server 2.0.41
Apache Http Server 1.3
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.3
Apache Http Server 1.3.4
Apache Http Server 2.0.36
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 2.0.45
7.5
CVSSv2
CVE-2001-1449
The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories....
Apache Http Server 1.3.1
Apache Http Server 1.3.11
Apache Http Server 1.3.6
Apache Http Server 1.3.9
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Mandrakesoft Mandrake Single Network Firewall 7.2
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3
Apache Http Server 1.3.3
Apache Http Server 1.3.4
Mandrakesoft Mandrake Linux 7.1
Mandrakesoft Mandrake Linux 7.3
Mandrakesoft Mandrake Linux 8.0
Mandrakesoft Mandrake Linux Corporate Server 1.0.1
4.3
CVSSv2
CVE-2007-6388
Cross-site scripting (XSS) vulnerability in mod_status in the Apache HTTP Server 2.2.0 through 2.2.6, 2.0.35 through 2.0.61, and 1.3.2 through 1.3.39, when the server-status page is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors....
Apache Http Server 1.3.12
Apache Http Server 1.3.2
Apache Http Server 1.3.22
Apache Http Server 1.3.29
Apache Http Server 1.3.3
Apache Http Server 1.3.39
Apache Http Server 1.3.4
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.45
Apache Http Server 2.0.46
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 2.2
Apache Http Server 2.2.1
Apache Http Server 1.3.25
Apache Http Server 1.3.26
Apache Http Server 1.3.32
Apache Http Server 1.3.33
Apache Http Server 1.3.7
Apache Http Server 1.3.8
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.57
Apache Http Server 2.0.58
Apache Http Server 2.0.59
Apache Http Server 2.2.4
Apache Http Server -
Apache Http Server 1.3.23
Apache Http Server 1.3.24
Apache Http Server 1.3.30
Apache Http Server 1.3.31
Apache Http Server 1.3.5
Apache Http Server 1.3.6
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.47
Apache Http Server 2.0.48
Apache Http Server 2.0.55
Apache Http Server 2.0.56
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 1.3.1
Apache Http Server 1.3.11
Apache Http Server 1.3.27
Apache Http Server 1.3.28
Apache Http Server 1.3.37
Apache Http Server 1.3.38
Apache Http Server 1.3.9
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.43
Apache Http Server 2.0.44
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 2.0.60
Apache Http Server 2.0.61
Apache Http Server 2.2.6
1 Github repository available
4.3
CVSSv2
CVE-2005-3352
Cross-site scripting (XSS) vulnerability in the mod_imap module of Apache httpd before 1.3.35-dev and Apache httpd 2.0.x before 2.0.56-dev allows remote attackers to inject arbitrary web script or HTML via the Referer when using image maps....
Apache Http Server 1.3.0
Apache Http Server 1.3.1
Apache Http Server 1.3.13
Apache Http Server 1.3.14
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.22
Apache Http Server 1.3.26
Apache Http Server 1.3.32
Apache Http Server 1.3.4
Apache Http Server 1.3.5
Apache Http Server 2.0.28
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.3.15
Apache Http Server 1.3.19
Apache Http Server 1.3.2
Apache Http Server 1.3.24
Apache Http Server 1.3.29
Apache Http Server 1.3.3
Apache Http Server 1.3.7
Apache Http Server 1.3.8
Apache Http Server 2.0.32
Apache Http Server 2.0.34
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 1.3
Apache Http Server 1.3.16
Apache Http Server 1.3.20
Apache Http Server 1.3.25
Apache Http Server 1.3.30
Apache Http Server 1.3.31
Apache Http Server 1.3.9
Apache Http Server 2.0
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.43
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 1.3.10
Apache Http Server 1.3.23
Apache Http Server 1.3.27
Apache Http Server 1.3.28
Apache Http Server 1.3.6
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.9
Apache Mod Imap
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.54
Apache Http Server 2.0.55
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30758
CSRF
CVE-2021-44228
CVE-2023-33633
XPath injection
CVE-2023-33735
CVE-2023-29336
CVE-2023-34312
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »
Vulmon