Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
apache http server 2.2.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-6422
The balancer_handler function in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6, when a threaded Multi-Processing Module is used, allows remote authenticated users to cause a denial of service (child process crash) via an invalid bb variable....
Apache Http Server 2.2.3
Apache Http Server 2.2.4
Apache Http Server 2.2.1
Apache Http Server 2.2.2
Apache Http Server 2.2
Apache Http Server -
Apache Http Server 2.2.6
1 Github repository available
NA
CVE-2007-6421
Cross-site scripting (XSS) vulnerability in balancer-manager in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) ss, (2) wr, or (3) rr parameters, or (4) the URL....
Apache Http Server 2.2.6
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.2.4
Apache Http Server -
Apache Http Server 2.2
Apache Http Server 2.2.1
1 Github repository available
NA
CVE-2009-1195
The Apache HTTP Server 2.2.11 and earlier 2.2 versions does not properly handle Options=IncludesNOEXEC in the AllowOverride directive, which allows local users to gain privileges by configuring (1) Options Includes, (2) Options +Includes, or (3) Options +IncludesNOEXEC in a...
Apache Http Server 2.2.2
Apache Http Server 2.2
Apache Http Server 2.2.7
Apache Http Server 2.2.8
Apache Http Server 2.2.3
Apache Http Server -
Apache Http Server
Apache Http Server 2.2.0
Apache Http Server 2.2.4
Apache Http Server 2.2.6
Apache Http Server 2.2.1
Apache Http Server 2.2.9
Apache Http Server 2.2.10
5 Github repositories available
NA
CVE-2012-4558
Multiple cross-site scripting (XSS) vulnerabilities in the balancer_handler function in the manager interface in mod_proxy_balancer.c in the mod_proxy_balancer module in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject...
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.2.13
Apache Http Server 2.2.14
Apache Http Server 2.2.21
Apache Http Server 2.2.22
Apache Http Server 2.2.0
Apache Http Server 2.2.1
Apache Http Server 2.2.10
Apache Http Server 2.2.11
Apache Http Server 2.2.12
Apache Http Server 2.2.19
Apache Http Server 2.2.20
Apache Http Server 2.2.4
Apache Http Server 2.2.6
Apache Http Server 2.2.15
Apache Http Server 2.2.16
Apache Http Server 2.2.23
Apache Http Server 2.2
Apache Http Server 2.2.8
Apache Http Server 2.2.9
Apache Http Server 2.2.17
Apache Http Server 2.2.18
Apache Http Server 2.4.0
Apache Http Server 2.4.3
Apache Http Server 2.4.1
Apache Http Server 2.4.2
10 Github repositories available
NA
CVE-2010-1452
The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service (process crash) via a request that lacks a path....
Apache Http Server 2.2.6
Apache Http Server 2.2.7
Apache Http Server 2.2.15
Apache Http Server -
Apache Http Server 2.2.3
Apache Http Server 2.2.4
Apache Http Server 2.2.13
Apache Http Server 2.2.14
Apache Http Server 2.2.0
Apache Http Server 2.2.8
Apache Http Server 2.2.9
Apache Http Server 2.2.10
Apache Http Server 2.2
Apache Http Server 2.2.1
Apache Http Server 2.2.2
Apache Http Server 2.2.11
Apache Http Server 2.2.12
6 Github repositories available
NA
CVE-2012-2687
Multiple cross-site scripting (XSS) vulnerabilities in the make_variant_list function in mod_negotiation.c in the mod_negotiation module in the Apache HTTP Server 2.4.x before 2.4.3, when the MultiViews option is enabled, allow remote attackers to inject arbitrary web script or...
Apache Http Server 2.4.0
Apache Http Server 2.2.22
Apache Http Server 2.2.21
Apache Http Server 2.2.12
Apache Http Server 2.2.13
Apache Http Server 2.2.10
Apache Http Server 2.2.1
Apache Http Server 2.2.16
Apache Http Server 2.2.17
Apache Http Server 2.2.0
Apache Http Server 2.2.18
Apache Http Server 2.2.20
Apache Http Server 2.2.14
Apache Http Server 2.2.23
Apache Http Server 2.2.19
Apache Http Server 2.2.2
Apache Http Server 2.2.4
Apache Http Server 2.2.8
Apache Http Server 2.2.3
Apache Http Server 2.4.1
Apache Http Server 2.4.2
Apache Http Server 2.2.15
Apache Http Server 2.2.6
Apache Http Server 2.2.11
Apache Http Server 2.2.9
8 Github repositories available
NA
CVE-2012-3499
Multiple cross-site scripting (XSS) vulnerabilities in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via vectors involving hostnames and URIs in the (1) mod_imagemap, (2) mod_info, (3)...
Apache Http Server 2.2
Apache Http Server 2.2.8
Apache Http Server 2.2.9
Apache Http Server 2.2.16
Apache Http Server 2.2.17
Apache Http Server 2.2.18
Apache Http Server 2.2.4
Apache Http Server 2.2.6
Apache Http Server 2.2.14
Apache Http Server 2.2.15
Apache Http Server 2.2.23
Apache Http Server 2.2.0
Apache Http Server 2.2.1
Apache Http Server 2.2.10
Apache Http Server 2.2.11
Apache Http Server 2.2.19
Apache Http Server 2.2.20
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.2.12
Apache Http Server 2.2.13
Apache Http Server 2.2.21
Apache Http Server 2.2.22
Apache Http Server 2.4.1
Apache Http Server 2.4.2
Apache Http Server 2.4.0
Apache Http Server 2.4.3
11 Github repositories available
NA
CVE-2006-4154
Format string vulnerability in the mod_tcl module 1.0 for Apache 2.x allows context-dependent attackers to execute arbitrary code via format string specifiers that are not properly handled in a set_var function call in (1) tcl_cmds.c and (2) tcl_core.c....
Apache Http Server 2.0.28
Apache Http Server 2.0.32
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.56
Apache Http Server 2.0.57
Apache Http Server 2.1.3
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.1.1
Apache Http Server 2.1.2
Apache Http Server 2.2.3
Apache Http Server 2.0
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.9
Apache Http Server 2.1
Apache Http Server 2.2.1
Apache Http Server 2.2.2
Apache Http Server 2.0.34
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 2.0.58
Apache Http Server 2.1.6
Apache Http Server 2.2
NA
CVE-2008-2168
Cross-site scripting (XSS) vulnerability in Apache 2.2.6 and earlier allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded URLs that are not properly handled when displaying the 403 Forbidden error page....
Apache Http Server 2.0.28
Apache Http Server 2.0
Apache Http Server 2.0.37
Apache Http Server 2.0.32
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.41
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.56
Apache Http Server 2.0.57
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.1
Apache Http Server 2.2.2
Apache Http Server 2.0.34
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 2.0.58
Apache Http Server 2.0.59
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.3
Apache Http Server 2.2.4
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.60
Apache Http Server 2.0.61
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server -
Apache Http Server 2.0.38
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.0.9
Apache Http Server 2.1
Apache Http Server 2.1.1
Apache Http Server 2.1.8
Apache Http Server 2.2
1 EDB exploit available
1 Github repository available
NA
CVE-2007-4465
Cross-site scripting (XSS) vulnerability in mod_autoindex.c in the Apache HTTP Server before 2.2.6, when the charset on a server-generated page is not defined, allows remote attackers to inject arbitrary web script or HTML via the P parameter using the UTF-7 charset. NOTE: it...
Apache Http Server 2.0.28
Apache Http Server 2.0.38
Apache Http Server 2.0.39
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.55
Apache Http Server 2.0.56
Apache Http Server 2.1
Apache Http Server 2.1.1
Apache Http Server 2.1.8
Apache Http Server 2.2
Apache Http Server 2.2.1
Apache Http Server 2.0
Apache Http Server 2.0.36
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 2.0.61
Apache Http Server 2.0.9
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server 2.0.32
Apache Http Server 2.0.40
Apache Http Server 2.0.41
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.57
Apache Http Server 2.0.58
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.0.34
Apache Http Server 2.0.35
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 2.0.59
Apache Http Server 2.0.60
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.4
Apache Http Server -
1 Github repository available
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-20607
arbitrary
CVE-2022-3229
CVE-2022-44268
code injection
CVE-2023-25016
CVE-2022-48311
CVE-2022-47949
buffer overflow
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »