Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
apache http server 2.0.59 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3304
Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the worker_score and process_score arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka...
Apache Http Server 1.3.37
Apache Http Server 2.0.59
Apache Http Server 2.2.4
NA
CVE-2007-3303
Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows local users to cause a denial of service via certain code sequences executed in a worker process that (1) stop request processing by killing all worker processes and preventing creation of replacements or (2)...
Apache Http Server 2.2.4
Apache Http Server 2.0.59
NA
CVE-2007-6203
Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier header from an HTTP request when it is reflected back in a "413 Request Entity Too Large" error message, which might allow cross-site scripting (XSS) style attacks using web client...
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.0.46
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.4
Apache Http Server 2.0.47
Apache Http Server 2.0.48
Apache Http Server 2.0.57
Apache Http Server 2.0.58
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.59
Apache Http Server 2.1.1
Apache Http Server 2.1.8
Apache Http Server 2.2.0
1 EDB exploit available
1 Github repository available
NA
CVE-2008-2168
Cross-site scripting (XSS) vulnerability in Apache 2.2.6 and earlier allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded URLs that are not properly handled when displaying the 403 Forbidden error page....
Apache Http Server 2.0.28
Apache Http Server 2.0
Apache Http Server 2.0.37
Apache Http Server 2.0.32
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.41
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.56
Apache Http Server 2.0.57
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.1
Apache Http Server 2.2.2
Apache Http Server 2.0.34
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 2.0.58
Apache Http Server 2.0.59
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.3
Apache Http Server 2.2.4
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.60
Apache Http Server 2.0.61
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server -
Apache Http Server 2.0.38
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.0.9
Apache Http Server 2.1
Apache Http Server 2.1.1
Apache Http Server 2.1.8
Apache Http Server 2.2
1 EDB exploit available
1 Github repository available
NA
CVE-2007-4465
Cross-site scripting (XSS) vulnerability in mod_autoindex.c in the Apache HTTP Server before 2.2.6, when the charset on a server-generated page is not defined, allows remote attackers to inject arbitrary web script or HTML via the P parameter using the UTF-7 charset. NOTE: it...
Apache Http Server 2.0.28
Apache Http Server 2.0.38
Apache Http Server 2.0.39
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.55
Apache Http Server 2.0.56
Apache Http Server 2.1
Apache Http Server 2.1.1
Apache Http Server 2.1.8
Apache Http Server 2.2
Apache Http Server 2.2.1
Apache Http Server 2.0
Apache Http Server 2.0.36
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 2.0.61
Apache Http Server 2.0.9
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server 2.0.32
Apache Http Server 2.0.40
Apache Http Server 2.0.41
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.57
Apache Http Server 2.0.58
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.0.34
Apache Http Server 2.0.35
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 2.0.59
Apache Http Server 2.0.60
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.4
Apache Http Server -
1 Github repository available
NA
CVE-2011-3607
Integer overflow in the ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, allows local users to gain privileges via a .htaccess file with a crafted SetEnvIf directive, in...
Apache Http Server 2.0.61
Apache Http Server 2.0.58
Apache Http Server 2.0.53
Apache Http Server 2.0.52
Apache Http Server 2.0.44
Apache Http Server 2.0.59
Apache Http Server 2.0.32
Apache Http Server 2.0.41
Apache Http Server 2.0.40
Apache Http Server 2.0.55
Apache Http Server 2.0.54
Apache Http Server 2.0.47
Apache Http Server 2.0.46
Apache Http Server 2.0.63
Apache Http Server 2.0.9
Apache Http Server 2.0.35
Apache Http Server 2.0.34
Apache Http Server 2.0.64
Apache Http Server 2.0.51
Apache Http Server 2.0.50
Apache Http Server 2.0.43
Apache Http Server 2.0.42
Apache Http Server 2.0.45
Apache Http Server 2.0.28
Apache Http Server 2.0.39
Apache Http Server 2.0.38
Apache Http Server 2.0.57
Apache Http Server 2.0.56
Apache Http Server 2.0.49
Apache Http Server 2.0.48
Apache Http Server 2.0.60
Apache Http Server 2.0
Apache Http Server 2.0.37
Apache Http Server 2.0.36
Apache Http Server 2.2.8
Apache Http Server 2.2.13
Apache Http Server 2.2.4
Apache Http Server 2.2.18
Apache Http Server 2.2.3
Apache Http Server 2.2.12
Apache Http Server 2.2.14
Apache Http Server 2.2.19
Apache Http Server 2.2.9
Apache Http Server 2.2.10
Apache Http Server 2.2.15
Apache Http Server 2.2.2
Apache Http Server 2.2.1
Apache Http Server 2.2.6
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.16
Apache Http Server 2.2.20
Apache Http Server 2.2.21
1 EDB exploit available
7 Github repositories available
NA
CVE-2011-4415
The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, does not restrict the size of values of environment variables, which allows local users to cause a denial of service (memory...
Apache Http Server 2.0.55
Apache Http Server 2.0.54
Apache Http Server 2.0.46
Apache Http Server 2.0.49
Apache Http Server 2.0.63
Apache Http Server 2.0.9
Apache Http Server 2.0.35
Apache Http Server 2.0.34
Apache Http Server 2.0.37
Apache Http Server 2.0.57
Apache Http Server 2.0.56
Apache Http Server 2.0.51
Apache Http Server 2.0.48
Apache Http Server 2.0.43
Apache Http Server 2.0.60
Apache Http Server 2.0
Apache Http Server 2.0.36
Apache Http Server 2.0.39
Apache Http Server 2.0.50
Apache Http Server 2.0.53
Apache Http Server 2.0.42
Apache Http Server 2.0.45
Apache Http Server 2.0.28
Apache Http Server 2.0.38
Apache Http Server 2.0.41
Apache Http Server 2.0.61
Apache Http Server 2.0.58
Apache Http Server 2.0.52
Apache Http Server 2.0.47
Apache Http Server 2.0.44
Apache Http Server 2.0.59
Apache Http Server 2.0.32
Apache Http Server 2.0.40
Apache Http Server 2.0.64
Apache Http Server 2.2.1
Apache Http Server 2.2.3
Apache Http Server 2.2.12
Apache Http Server 2.2.19
Apache Http Server 2.2.6
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.16
Apache Http Server 2.2.21
Apache Http Server 2.2.9
Apache Http Server 2.2.10
Apache Http Server 2.2.15
Apache Http Server 2.2.2
Apache Http Server 2.2.20
Apache Http Server 2.2.8
Apache Http Server 2.2.13
Apache Http Server 2.2.4
Apache Http Server 2.2.18
Apache Http Server 2.2.14
1 EDB exploit available
8 Github repositories available
NA
CVE-2007-5000
Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the (2) mod_imagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or...
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.3.28
Apache Http Server 1.3.29
Apache Http Server 1.3.30
Apache Http Server 1.3.6
Apache Http Server 1.3.7
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.47
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.56
Apache Http Server 2.0.57
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.33
Apache Http Server 1.3.37
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.43
Apache Http Server 2.0.44
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.60
Apache Http Server 2.0.61
Apache Http Server 2.2.6
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.31
Apache Http Server 1.3.32
Apache Http Server 1.3.8
Apache Http Server 1.3.9
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 2.0.58
Apache Http Server 2.0.59
Apache Http Server 2.2.4
Apache Http Server -
Apache Http Server 1.3.0
Apache Http Server 1.3.1
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.4
Apache Http Server 1.3.5
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.45
Apache Http Server 2.0.46
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.2
Apache Http Server 2.2.1
1 Github repository available
NA
CVE-2008-0455
Cross-site scripting (XSS) vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary web...
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.33
Apache Http Server 1.3.34
Apache Http Server 2.0.28
Apache Http Server 2.0.32
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 2.0.59
Apache Http Server 2.0.60
Apache Http Server 2.2.6
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.28
Apache Http Server 1.3.35
Apache Http Server 1.3.36
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.61
Apache Http Server 2.0.9
Apache Http Server 1.3.1
Apache Http Server 1.3.11
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.31
Apache Http Server 1.3.32
Apache Http Server 2.0
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.56
Apache Http Server 2.0.58
Apache Http Server 2.2.3
Apache Http Server 2.2.4
Apache Http Server -
Apache Http Server 1.3
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.29
Apache Http Server 1.3.3
Apache Http Server 1.3.37
Apache Http Server 1.3.39
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.2.0
Apache Http Server 2.2.2
1 EDB exploit available
1 Github repository available
NA
CVE-2007-6388
Cross-site scripting (XSS) vulnerability in mod_status in the Apache HTTP Server 2.2.0 through 2.2.6, 2.0.35 through 2.0.61, and 1.3.2 through 1.3.39, when the server-status page is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors....
Apache Http Server 1.3.12
Apache Http Server 1.3.2
Apache Http Server 1.3.22
Apache Http Server 1.3.29
Apache Http Server 1.3.3
Apache Http Server 1.3.39
Apache Http Server 1.3.4
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.45
Apache Http Server 2.0.46
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 2.2
Apache Http Server 2.2.1
Apache Http Server 1.3.25
Apache Http Server 1.3.26
Apache Http Server 1.3.32
Apache Http Server 1.3.33
Apache Http Server 1.3.7
Apache Http Server 1.3.8
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.57
Apache Http Server 2.0.58
Apache Http Server 2.0.59
Apache Http Server 2.2.4
Apache Http Server -
Apache Http Server 1.3.23
Apache Http Server 1.3.24
Apache Http Server 1.3.30
Apache Http Server 1.3.31
Apache Http Server 1.3.5
Apache Http Server 1.3.6
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.47
Apache Http Server 2.0.48
Apache Http Server 2.0.55
Apache Http Server 2.0.56
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 1.3.1
Apache Http Server 1.3.11
Apache Http Server 1.3.27
Apache Http Server 1.3.28
Apache Http Server 1.3.37
Apache Http Server 1.3.38
Apache Http Server 1.3.9
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.43
Apache Http Server 2.0.44
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 2.0.60
Apache Http Server 2.0.61
Apache Http Server 2.2.6
1 Github repository available
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-34265
open redirect
unauthorized
CVE-2022-2294
validation
CVE-2022-31600
CVE-2022-32095
CVE-2022-2284
CVE-2022-31601
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »