Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
apache http server 2.0.58 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4110
Apache 2.2.2, when running on Windows, allows remote attackers to read source code of CGI programs via a request that contains uppercase (or alternate case) characters that bypass the case-sensitive ScriptAlias directive, but allow access to the file on case-insensitive file...
Apache Http Server 2.2.3
Apache Http Server 2.0.58
Apache Http Server 2.2.2
1 EDB exploit available
NA
CVE-2007-6203
Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier header from an HTTP request when it is reflected back in a "413 Request Entity Too Large" error message, which might allow cross-site scripting (XSS) style attacks using web client...
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.0.46
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.4
Apache Http Server 2.0.47
Apache Http Server 2.0.48
Apache Http Server 2.0.57
Apache Http Server 2.0.58
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.59
Apache Http Server 2.1.1
Apache Http Server 2.1.8
Apache Http Server 2.2.0
1 EDB exploit available
1 Github repository available
NA
CVE-2006-3747
Off-by-one error in the ldap scheme handling in the Rewrite module (mod_rewrite) in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service (application crash) and possibly...
Apache Http Server 1.3.31
Apache Http Server 1.3.32
Apache Http Server 1.3.8
Apache Http Server 1.3.9
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 1.3.3
Apache Http Server 1.3.30
Apache Http Server 1.3.7
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 1.3.28
Apache Http Server 1.3.29
Apache Http Server 1.3.5
Apache Http Server 1.3.6
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.57
Apache Http Server 2.0.58
Apache Http Server 1.3.33
Apache Http Server 1.3.4
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.55
Apache Http Server 2.0.56
Ubuntu Ubuntu Linux 5.10
Ubuntu Ubuntu Linux 6.06 Lts
Ubuntu Ubuntu Linux 5.04
4 EDB exploits available
1 Metasploit module available
2 Github repositories available
NA
CVE-2006-4154
Format string vulnerability in the mod_tcl module 1.0 for Apache 2.x allows context-dependent attackers to execute arbitrary code via format string specifiers that are not properly handled in a set_var function call in (1) tcl_cmds.c and (2) tcl_core.c....
Apache Http Server 2.0.28
Apache Http Server 2.0.32
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.56
Apache Http Server 2.0.57
Apache Http Server 2.1.3
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.1.1
Apache Http Server 2.1.2
Apache Http Server 2.2.3
Apache Http Server 2.0
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.9
Apache Http Server 2.1
Apache Http Server 2.2.1
Apache Http Server 2.2.2
Apache Http Server 2.0.34
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 2.0.58
Apache Http Server 2.1.6
Apache Http Server 2.2
NA
CVE-2008-2168
Cross-site scripting (XSS) vulnerability in Apache 2.2.6 and earlier allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded URLs that are not properly handled when displaying the 403 Forbidden error page....
Apache Http Server 2.0.28
Apache Http Server 2.0
Apache Http Server 2.0.37
Apache Http Server 2.0.32
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.41
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.56
Apache Http Server 2.0.57
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.1
Apache Http Server 2.2.2
Apache Http Server 2.0.34
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 2.0.58
Apache Http Server 2.0.59
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.3
Apache Http Server 2.2.4
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.60
Apache Http Server 2.0.61
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server -
Apache Http Server 2.0.38
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.0.9
Apache Http Server 2.1
Apache Http Server 2.1.1
Apache Http Server 2.1.8
Apache Http Server 2.2
1 EDB exploit available
1 Github repository available
NA
CVE-2007-4465
Cross-site scripting (XSS) vulnerability in mod_autoindex.c in the Apache HTTP Server before 2.2.6, when the charset on a server-generated page is not defined, allows remote attackers to inject arbitrary web script or HTML via the P parameter using the UTF-7 charset. NOTE: it...
Apache Http Server 2.0.28
Apache Http Server 2.0.38
Apache Http Server 2.0.39
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.55
Apache Http Server 2.0.56
Apache Http Server 2.1
Apache Http Server 2.1.1
Apache Http Server 2.1.8
Apache Http Server 2.2
Apache Http Server 2.2.1
Apache Http Server 2.0
Apache Http Server 2.0.36
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 2.0.61
Apache Http Server 2.0.9
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server 2.0.32
Apache Http Server 2.0.40
Apache Http Server 2.0.41
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.57
Apache Http Server 2.0.58
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.0.34
Apache Http Server 2.0.35
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 2.0.59
Apache Http Server 2.0.60
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.4
Apache Http Server -
1 Github repository available
NA
CVE-2011-3607
Integer overflow in the ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, allows local users to gain privileges via a .htaccess file with a crafted SetEnvIf directive, in...
Apache Http Server 2.0.61
Apache Http Server 2.0.58
Apache Http Server 2.0.53
Apache Http Server 2.0.52
Apache Http Server 2.0.44
Apache Http Server 2.0.59
Apache Http Server 2.0.32
Apache Http Server 2.0.41
Apache Http Server 2.0.40
Apache Http Server 2.0.55
Apache Http Server 2.0.54
Apache Http Server 2.0.47
Apache Http Server 2.0.46
Apache Http Server 2.0.63
Apache Http Server 2.0.9
Apache Http Server 2.0.35
Apache Http Server 2.0.34
Apache Http Server 2.0.64
Apache Http Server 2.0.51
Apache Http Server 2.0.50
Apache Http Server 2.0.43
Apache Http Server 2.0.42
Apache Http Server 2.0.45
Apache Http Server 2.0.28
Apache Http Server 2.0.39
Apache Http Server 2.0.38
Apache Http Server 2.0.57
Apache Http Server 2.0.56
Apache Http Server 2.0.49
Apache Http Server 2.0.48
Apache Http Server 2.0.60
Apache Http Server 2.0
Apache Http Server 2.0.37
Apache Http Server 2.0.36
Apache Http Server 2.2.8
Apache Http Server 2.2.13
Apache Http Server 2.2.4
Apache Http Server 2.2.18
Apache Http Server 2.2.3
Apache Http Server 2.2.12
Apache Http Server 2.2.14
Apache Http Server 2.2.19
Apache Http Server 2.2.9
Apache Http Server 2.2.10
Apache Http Server 2.2.15
Apache Http Server 2.2.2
Apache Http Server 2.2.1
Apache Http Server 2.2.6
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.16
Apache Http Server 2.2.20
Apache Http Server 2.2.21
1 EDB exploit available
7 Github repositories available
NA
CVE-2011-4415
The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, does not restrict the size of values of environment variables, which allows local users to cause a denial of service (memory...
Apache Http Server 2.0.55
Apache Http Server 2.0.54
Apache Http Server 2.0.46
Apache Http Server 2.0.49
Apache Http Server 2.0.63
Apache Http Server 2.0.9
Apache Http Server 2.0.35
Apache Http Server 2.0.34
Apache Http Server 2.0.37
Apache Http Server 2.0.57
Apache Http Server 2.0.56
Apache Http Server 2.0.51
Apache Http Server 2.0.48
Apache Http Server 2.0.43
Apache Http Server 2.0.60
Apache Http Server 2.0
Apache Http Server 2.0.36
Apache Http Server 2.0.39
Apache Http Server 2.0.50
Apache Http Server 2.0.53
Apache Http Server 2.0.42
Apache Http Server 2.0.45
Apache Http Server 2.0.28
Apache Http Server 2.0.38
Apache Http Server 2.0.41
Apache Http Server 2.0.61
Apache Http Server 2.0.58
Apache Http Server 2.0.52
Apache Http Server 2.0.47
Apache Http Server 2.0.44
Apache Http Server 2.0.59
Apache Http Server 2.0.32
Apache Http Server 2.0.40
Apache Http Server 2.0.64
Apache Http Server 2.2.1
Apache Http Server 2.2.3
Apache Http Server 2.2.12
Apache Http Server 2.2.19
Apache Http Server 2.2.6
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.16
Apache Http Server 2.2.21
Apache Http Server 2.2.9
Apache Http Server 2.2.10
Apache Http Server 2.2.15
Apache Http Server 2.2.2
Apache Http Server 2.2.20
Apache Http Server 2.2.8
Apache Http Server 2.2.13
Apache Http Server 2.2.4
Apache Http Server 2.2.18
Apache Http Server 2.2.14
1 EDB exploit available
8 Github repositories available
NA
CVE-2007-5000
Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the (2) mod_imagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or...
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.3.28
Apache Http Server 1.3.29
Apache Http Server 1.3.30
Apache Http Server 1.3.6
Apache Http Server 1.3.7
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.47
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.56
Apache Http Server 2.0.57
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.33
Apache Http Server 1.3.37
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.43
Apache Http Server 2.0.44
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.60
Apache Http Server 2.0.61
Apache Http Server 2.2.6
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.31
Apache Http Server 1.3.32
Apache Http Server 1.3.8
Apache Http Server 1.3.9
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 2.0.58
Apache Http Server 2.0.59
Apache Http Server 2.2.4
Apache Http Server -
Apache Http Server 1.3.0
Apache Http Server 1.3.1
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.4
Apache Http Server 1.3.5
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.45
Apache Http Server 2.0.46
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.2
Apache Http Server 2.2.1
1 Github repository available
NA
CVE-2008-0455
Cross-site scripting (XSS) vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary web...
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.33
Apache Http Server 1.3.34
Apache Http Server 2.0.28
Apache Http Server 2.0.32
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 2.0.59
Apache Http Server 2.0.60
Apache Http Server 2.2.6
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.28
Apache Http Server 1.3.35
Apache Http Server 1.3.36
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.61
Apache Http Server 2.0.9
Apache Http Server 1.3.1
Apache Http Server 1.3.11
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.31
Apache Http Server 1.3.32
Apache Http Server 2.0
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.56
Apache Http Server 2.0.58
Apache Http Server 2.2.3
Apache Http Server 2.2.4
Apache Http Server -
Apache Http Server 1.3
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.29
Apache Http Server 1.3.3
Apache Http Server 1.3.37
Apache Http Server 1.3.39
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.2.0
Apache Http Server 2.2.2
1 EDB exploit available
1 Github repository available
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-34265
open redirect
unauthorized
CVE-2022-2294
validation
CVE-2022-31600
CVE-2022-32095
CVE-2022-2284
CVE-2022-31601
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »