Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Apache HTTP ServerApache HTTP Server: mod_auth_digest timing attack

Risk 34
Severity
4.8
First published (updated )
CVE-2026-33006

Apache HTTP ServerApache HTTP Server: mod_authn_socache crash

Risk 29
Severity
5.3
First published (updated )
CVE-2026-33007

Apache HTTP ServerApache HTTP Server: multiple modules: HTTP response splitting forwarding malicious status line

Risk 42
Severity
6.5
First published (updated )
CVE-2026-33523

Apache HTTP ServerApache HTTP Server: Off-by-one OOB reads in AJP getter functions

Risk 29
Severity
5.3
First published (updated )
CVE-2026-33857

Apache HTTP ServerApache HTTP Server: mod_proxy_ajp: Heap Buffer Over-Read Due to Missing Null-Termination Check (ajp_msg_get_string)

Risk 29
Severity
5.3
First published (updated )
CVE-2026-34032
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache HTTP Servermod_userdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users withā€¦

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2419262

Apache HTTP ServerImproper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache HTTP Server thā€¦

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2419139

Apache HTTP ServerApache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo

Risk 37
Severity
5.4
First published (updated )
CVE-2025-66200

Apache HTTP ServerApache HTTP Server: CGI environment variable override

Risk 43
Severity
6.5
First published (updated )
CVE-2025-65082

Apache HTTP ServerApache HTTP Server: 'RewriteCond expr' always evaluates to true in 2.4.64

Risk 49
Severity
6.3
First published (updated )
CVE-2025-54090
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache HTTP ServerIn certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2.4.ā€¦

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2374578

Apache HTTP ServerInsufficient escaping of user-supplied data in mod_ssl in Apache HTTP Server 2.4.63 and earlier alloā€¦

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2374571

Apache HTTP ServerApache HTTP Server: source code disclosure with handlers configured via AddType

Risk 28
Severity
5.3
First published (updated )
CVE-2024-40725

Apache HTTP ServerSSRF

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2295022

Apache HTTP ServerEncoding problem in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows request URLs with incoā€¦

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2295012
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Linux Linux kerneltcp: fix page frag corruption on page fault

Risk 35
Severity
5.9
First published (updated )
CVE-2021-47544

Fedoraproject FedoraApache HTTP Server: HTTP Response Splitting in multiple modules

Risk 40
Severity
6.5
First published (updated )
CVE-2024-24795

ubuntu/apache2Apache HTTP Server: HTTP/2 stream memory not reclaimed right away on RST

Risk 38
Severity
5.9
First published (updated )
CVE-2023-45802

redhat/jbcs-httpd24-httpdread beyond bounds via ap_rwrite()

Risk 28
Severity
5.3
First published (updated )
CVE-2022-28614

redhat/httpdread beyond bounds in mod_isapi

Risk 28
Severity
5.3
First published (updated )
CVE-2022-28330
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Fedoraproject FedoraHardcoded static IV and AAD with a reused key in AES GCM encryption in mod_auth_openidc

Risk 35
Severity
5.9
First published (updated )
CVE-2021-32791

Fedoraproject FedoraXSS vulnerability when using OIDCPreservePost On in mod_auth_openidc

Risk 38
Severity
6.1
First published (updated )
CVE-2021-32792

Fedoraproject FedoraOpen Redirect in oidc_validate_redirect_url()

Risk 38
Severity
6.1
First published (updated )
CVE-2021-32786

McAfee ePolicy OrchestratorImproper Handling of Insufficient Privileges

Risk 32
Severity
5.5
First published (updated )
CVE-2020-13938

Oracle Instantis EnterprisetrackUnexpected URL matching with 'MergeSlashes OFF'

Risk 36
Severity
5.9
First published (updated )
CVE-2021-30641
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Oracle Instantis Enterprisetrackmod_proxy_wstunnel tunneling of non Upgraded connections

Risk 28
Severity
5.3
First published (updated )
CVE-2019-17567

Apache HTTP ServerIP address spoofing when proxying using mod_remoteip and mod_rewrite For configurations using proxyiā€¦

Risk 27
Severity
5.3
First published (updated )
CVE-2020-11985

Canonical Ubuntu LinuxLast updated 18 August 2025

Risk 39
Severity
6.1
First published (updated )
CVE-2020-1927

Canonical Ubuntu LinuxLast updated 18 August 2025

Risk 28
Severity
5.3
First published (updated )
CVE-2020-1934

redhat/jbcs-httpd24-aprLast updated 18 August 2025

Risk 39
Severity
6.1
First published (updated )
CVE-2019-10098
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
Ā© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203