Where
-Infinity
0

Trending

Last week
Last month
Last year

oss-secCVE-2026-29169: Apache HTTP Server: mod_dav_lock indict lock crash

First published (updated )
https://seclists.org/oss-sec/2026/q2/413

Apache HTTP ServerApache HTTP Server: buffer overflow in mod_proxy_ajp via ajp_msg_check_header()

Risk 90
Severity
9.8
First published (updated )
CVE-2026-28780

oss-secCVE-2026-28780: Apache HTTP Server: buffer overflow in mod_proxy_ajp via ajp_msg_check_header()

First published (updated )
https://seclists.org/oss-sec/2026/q2/410

Apache HTTP ServerApache HTTP Server: mod_md unrestricted OCSP response

Risk 54
Severity
7.3
First published (updated )
CVE-2026-29168

Apache HTTP ServerApache HTTP Server: mod_dav_lock indirect lock crash

Risk 46
Severity
7.5
Trending
Month
First published (updated )
CVE-2026-29169
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache HTTP ServerApache HTTP Server: http2: double free and possible RCE on early reset

Risk 84
Severity
8.8
First published (updated )
CVE-2026-23918

Apache HTTP ServerApache HTTP Server: mod_auth_digest timing attack

Risk 34
Severity
4.8
First published (updated )
CVE-2026-33006

Apache HTTP ServerApache HTTP Server: mod_authn_socache crash

Risk 29
Severity
5.3
First published (updated )
CVE-2026-33007

Apache HTTP ServerApache HTTP Server: multiple modules: HTTP response splitting forwarding malicious status line

Risk 42
Severity
6.5
First published (updated )
CVE-2026-33523

oss-secCVE-2026-33523: Apache HTTP Server: multiple modules: HTTP sponse splitting forwarding malicious status line

First published (updated )
https://seclists.org/oss-sec/2026/q2/391
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

oss-secCVE-2026-33007: Apache HTTP Server: mod_authn_socache crash

First published (updated )
https://seclists.org/oss-sec/2026/q2/390

oss-secCVE-2026-33006: Apache HTTP Server: mod_auth_digest timing attack

First published (updated )
https://seclists.org/oss-sec/2026/q2/389

oss-secCVE-2026-29169: Apache HTTP Server: mod_dav_lock indict lock crash

First published (updated )
https://seclists.org/oss-sec/2026/q2/388

oss-secCVE-2026-23918: Apache HTTP Server: http2: double fe and possible RCE on early set

First published (updated )
https://seclists.org/oss-sec/2026/q2/387

Apache HTTP ServerApache HTTP Server: Off-by-one OOB reads in AJP getter functions

Risk 29
Severity
5.3
First published (updated )
CVE-2026-33857
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache HTTP ServerApache HTTP Server: mod_proxy_ajp: Heap Buffer Over-Read Due to Missing Null-Termination Check (ajp_msg_get_string)

Risk 29
Severity
5.3
First published (updated )
CVE-2026-34032

Apache HTTP ServerApache HTTP Server: mod_proxy_ajp: Heap Over-Read and memory disclosure in ajp_parse_data()

Risk 46
Severity
7.5
First published (updated )
CVE-2026-34059

Apache HTTP ServerApache HTTP Server: mod_rewrite elevation of privileges via ap_expr

Risk 84
Severity
8.8
First published (updated )
CVE-2026-24072

oss-secCVE-2026-24072: Apache HTTP Server: mod_write elevation of privileges via ap_expr

First published (updated )
https://seclists.org/oss-sec/2026/q2/386

oss-secCVE-2026-34059: Apache HTTP Server: mod_proxy_ajp: Heap Over-ad and memory disclosuin ajp_parse_data()

First published (updated )
https://seclists.org/oss-sec/2026/q2/385
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

oss-secCVE-2026-33857: Apache HTTP Server: Off-by-one OOB ads in AJP getter functions

First published (updated )
https://seclists.org/oss-sec/2026/q2/383

Wiz - AI-Powered Pentest Assistant (Open Source)

First published (updated )
Social
reddit

Apache HTTP ServerApache HTTP Server 2.4.65 and earlier with Server Side Includes (SSI) enabled and mod_cgid (but not …

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2419365

Apache HTTP Servermod_userdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users with…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2419262

Apache HTTP ServerImproper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache HTTP Server th…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2419139
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache HTTP ServerInteger Overflow

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2419140

Apache HTTP ServerApache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo

Risk 37
Severity
5.4
First published (updated )
CVE-2025-66200

Apache HTTP ServerApache HTTP Server: CGI environment variable override

Risk 43
Severity
6.5
First published (updated )
CVE-2025-65082

Apache HTTP ServerApache HTTP Server: NTLM Leakage on Windows through UNC SSRF

Risk 46
Severity
7.5
First published (updated )
CVE-2025-59775

Apache HTTP ServerApache HTTP Server: Server Side Includes adds query string to #exec cmd=...

Risk 74
Severity
8.3
First published (updated )
CVE-2025-58098
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203