Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
apache http server 2.2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-6420
Cross-site request forgery (CSRF) vulnerability in the balancer-manager in mod_proxy_balancer for Apache HTTP Server 2.2.x allows remote attackers to gain privileges via unspecified vectors....
Apache Http Server 2.2.6
Apache Http Server 2.2.0
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.2.4
Apache Http Server -
1 Github repository available
NA
CVE-2010-0408
The ap_proxy_ajp_request function in mod_proxy_ajp.c in mod_proxy_ajp in the Apache HTTP Server 2.2.x before 2.2.15 does not properly handle certain situations in which a client sends no request body, which allows remote attackers to cause a denial of service (backend server...
Apache Http Server 2.2
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.13
Apache Http Server 2.2.2
Apache Http Server 2.2.4
Apache Http Server 2.2.8
Apache Http Server 2.2.14
Apache Http Server 2.2.6
Apache Http Server 2.2.9
Apache Http Server 2.2.12
Apache Http Server 2.2.3
Apache Http Server -
8 Github repositories available
NA
CVE-2009-1195
The Apache HTTP Server 2.2.11 and earlier 2.2 versions does not properly handle Options=IncludesNOEXEC in the AllowOverride directive, which allows local users to gain privileges by configuring (1) Options Includes, (2) Options +Includes, or (3) Options +IncludesNOEXEC in a...
Apache Http Server 2.2
Apache Http Server 2.2.0
Apache Http Server 2.2.10
Apache Http Server 2.2.2
Apache Http Server 2.2.4
Apache Http Server
Apache Http Server 2.2.8
Apache Http Server 2.2.7
Apache Http Server 2.2.6
Apache Http Server 2.2.9
Apache Http Server 2.2.3
Apache Http Server 2.2.1
Apache Http Server -
7 Github repositories available
NA
CVE-2007-6203
Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier header from an HTTP request when it is reflected back in a "413 Request Entity Too Large" error message, which might allow cross-site scripting (XSS) style attacks using web client...
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.0.46
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.4
Apache Http Server 2.0.47
Apache Http Server 2.0.48
Apache Http Server 2.0.57
Apache Http Server 2.0.58
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.59
Apache Http Server 2.1.1
Apache Http Server 2.1.8
Apache Http Server 2.2.0
1 EDB exploit available
1 Github repository available
NA
CVE-2012-4558
Multiple cross-site scripting (XSS) vulnerabilities in the balancer_handler function in the manager interface in mod_proxy_balancer.c in the mod_proxy_balancer module in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject...
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.2.13
Apache Http Server 2.2.14
Apache Http Server 2.2.21
Apache Http Server 2.2.22
Apache Http Server 2.2.0
Apache Http Server 2.2.1
Apache Http Server 2.2.10
Apache Http Server 2.2.11
Apache Http Server 2.2.12
Apache Http Server 2.2.19
Apache Http Server 2.2.20
Apache Http Server 2.2.4
Apache Http Server 2.2.6
Apache Http Server 2.2.15
Apache Http Server 2.2.16
Apache Http Server 2.2.23
Apache Http Server 2.2
Apache Http Server 2.2.8
Apache Http Server 2.2.9
Apache Http Server 2.2.17
Apache Http Server 2.2.18
Apache Http Server 2.4.0
Apache Http Server 2.4.3
Apache Http Server 2.4.1
Apache Http Server 2.4.2
12 Github repositories available
NA
CVE-2014-0231
The mod_cgid module in the Apache HTTP Server before 2.4.10 does not have a timeout mechanism, which allows remote attackers to cause a denial of service (process hang) via a request to a CGI script that does not read from its stdin file descriptor....
Apache Http Server 2.4.2
Apache Http Server 2.4.3
Apache Http Server -
Apache Http Server 2.2.6
Apache Http Server 2.2.14
Apache Http Server 2.2.15
Apache Http Server 2.2.22
Apache Http Server 2.2.23
Apache Http Server
Apache Http Server 2.4.7
Apache Http Server 2.2.0
Apache Http Server 2.2.10
Apache Http Server 2.2.11
Apache Http Server 2.2.18
Apache Http Server 2.2.19
Apache Http Server 2.2.26
Apache Http Server 2.2.27
Apache Http Server 2.4.8
Apache Http Server 2.4.1
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.2.4
Apache Http Server 2.2.12
Apache Http Server 2.2.13
Apache Http Server 2.2.20
Apache Http Server 2.2.21
Apache Http Server 2.4.4
Apache Http Server 2.4.6
Apache Http Server 2.2.8
Apache Http Server 2.2.9
Apache Http Server 2.2.16
Apache Http Server 2.2.17
Apache Http Server 2.2.24
Apache Http Server 2.2.25
12 Github repositories available
NA
CVE-2010-1452
The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service (process crash) via a request that lacks a path....
Apache Http Server 2.2
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.10
Apache Http Server 2.2.13
Apache Http Server 2.2.2
Apache Http Server 2.2.4
Apache Http Server 2.2.8
Apache Http Server 2.2.14
Apache Http Server 2.2.7
Apache Http Server 2.2.6
Apache Http Server 2.2.9
Apache Http Server 2.2.12
Apache Http Server 2.2.3
Apache Http Server 2.2.15
Apache Http Server 2.2.1
Apache Http Server -
8 Github repositories available
6.1
CVSSv3
CVE-2016-4975
Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache...
Apache Http Server 2.2.3
Apache Http Server 2.2.4
Apache Http Server 2.2.14
Apache Http Server 2.2.15
Apache Http Server 2.2.22
Apache Http Server 2.2.23
Apache Http Server 2.4.23
Apache Http Server 2.4.20
Apache Http Server 2.4.18
Apache Http Server 2.4.6
Apache Http Server 2.4.4
Apache Http Server 2.2.10
Apache Http Server 2.2.11
Apache Http Server 2.2.18
Apache Http Server 2.2.19
Apache Http Server 2.2.26
Apache Http Server 2.2.27
Apache Http Server 2.4.12
Apache Http Server 2.4.10
Apache Http Server 2.4.1
Apache Http Server 2.2.6
Apache Http Server 2.2.8
Apache Http Server 2.2.9
Apache Http Server 2.2.16
Apache Http Server 2.2.17
Apache Http Server 2.2.24
Apache Http Server 2.2.25
Apache Http Server 2.4.17
Apache Http Server 2.4.16
Apache Http Server 2.4.3
Apache Http Server 2.4.2
Apache Http Server 2.2.0
Apache Http Server 2.2.2
Apache Http Server 2.2.12
Apache Http Server 2.2.13
Apache Http Server 2.2.20
Apache Http Server 2.2.21
Apache Http Server 2.2.29
Apache Http Server 2.2.31
Apache Http Server 2.4.9
Apache Http Server 2.4.7
12 Github repositories available
9.8
CVSSv3
CVE-2017-3169
In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL pointer when third-party modules call ap_hook_process_connection() during an HTTP request to an HTTPS port....
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.2.17
Apache Http Server 2.2.18
Apache Http Server 2.2.26
Apache Http Server 2.2.27
Apache Http Server 2.4.10
Apache Http Server 2.4.12
Apache Http Server 2.2.11
Apache Http Server 2.2.12
Apache Http Server 2.2.19
Apache Http Server 2.2.20
Apache Http Server 2.2.29
Apache Http Server 2.2.30
Apache Http Server 2.4.16
Apache Http Server 2.4.17
Apache Http Server 2.2.13
Apache Http Server 2.2.14
Apache Http Server 2.2.21
Apache Http Server 2.2.22
Apache Http Server 2.2.31
Apache Http Server 2.2.32
Apache Http Server 2.4.18
Apache Http Server 2.4.20
Apache Http Server 2.2.0
Apache Http Server 2.2.15
Apache Http Server 2.2.16
Apache Http Server 2.2.23
Apache Http Server 2.2.24
Apache Http Server 2.2.25
Apache Http Server 2.4.1
Apache Http Server 2.4.2
Apache Http Server 2.4.23
Apache Http Server 2.4.25
13 Github repositories available
NA
CVE-2012-2687
Multiple cross-site scripting (XSS) vulnerabilities in the make_variant_list function in mod_negotiation.c in the mod_negotiation module in the Apache HTTP Server 2.4.x before 2.4.3, when the MultiViews option is enabled, allow remote attackers to inject arbitrary web script or...
Apache Http Server 2.4.0
Apache Http Server 2.2.22
Apache Http Server 2.2.21
Apache Http Server 2.2.12
Apache Http Server 2.2.13
Apache Http Server 2.2.10
Apache Http Server 2.2.1
Apache Http Server 2.2.16
Apache Http Server 2.2.17
Apache Http Server 2.2.0
Apache Http Server 2.2.18
Apache Http Server 2.2.20
Apache Http Server 2.2.14
Apache Http Server 2.2.23
Apache Http Server 2.2.19
Apache Http Server 2.2.2
Apache Http Server 2.2.4
Apache Http Server 2.2.8
Apache Http Server 2.2.3
Apache Http Server 2.4.1
Apache Http Server 2.4.2
Apache Http Server 2.2.15
Apache Http Server 2.2.6
Apache Http Server 2.2.11
Apache Http Server 2.2.9
10 Github repositories available
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
wireless
SQL
CVE-2023-1454
overflow
CVE-2022-48425
CVE-2023-25064
CVE-2023-28107
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »
Vulmon