Apache Vulnerabilities


The following list includes some of the most critical Apache vulnerabilities known to the security community. In any case you find that there is anything missing in this list, please let us know and we will update it as soon as possible.
  1. Apache Tomcat Information Disclosure Vulnerability
  2. Apache Tomcat ServletSecurity Annotation Security Bypass Vulnerability
  3. HP-UX Apache Running Tomcat Servlet Engine Remote Modification and Denial of Service Vulnerabilities
  4. HP-UX Apache-based Web Server Multiple Vulnerabilities
  5. WebLogic Plugin HTTP Injection via Encoded URLs vulnerability
  6. HP-UX Running Apache-based Web Server Multiple Vulnerabilities
  7. HP-UX Running Apache with PHP Multiple Vulnerabilities
  8. Multiple OS Apache httpd Timeout Detection Flaw Vulnerability
  9. Apache CouchDB Timing Attack Vulnerability
  10. HP Secure Web Server for OpenVMS CSWS Multiple Vulnerabilities
  11. Apache mod_isapi Dangling Pointer Vulnerability
  12. HP-UX Running Apache Data Injection and DoS Vulnerability
  13. HP-UX Running Apache Web Server Suite DoS and Code Execution
  14. Apache Tomcat RequestDispatcher Directory Traversal Vulnerability
  15. Oracle WebLogic Apache Connector
  16. Apache HTTP Server mod_proxy_ftp Wildcard Characters Cross-Site Scripting
  17. Apache Tomcat Directory Traversal Vulnerability (Exploit #2)
  18. Apache Tomcat Directory Traversal Vulnerability
  19. Apache mod_negotiation XSS and Http Response Splitting
  20. Apache2 mod_proxy_balancer CSRF, XSS, Memory Corruption and DoS Vulnerability
  21. Apache mod_proxy_ftp Undefined Charset UTF-7 XSS Vulnerability
  22. Apache HTTP Server 413 Error Page XSS
  23. Apache HTTPD suEXEC Multiple Vulnerabilities
  24. Apache Mod_Rewrite Off-by-one Remote Overflow Exploit (win32)
  25. Apache Local User to Root Escalation
  26. Apache Tomcat Directory Traversal (\..)
  27. Apache HTTP Server mod_tcl set_var Format String
  28. Apache mod_rewrite Off-By-One (Exploit)
  29. CGI Script Source Code Disclosure Vulnerability in Apache for Windows
  30. Apache "mod_rewrite" LDAP URI Handling Remote Off-By-One Buffer Overflow
  31. Apache Tomcat 5.x.x Directory Listing
  32. Java Apache Mail Enterprise Server (JAMES) DoS
  33. Apache auth_ldap module Multiple Format String Vulnerabilities
  34. Apache Tomcat DoS
  35. Apache ssl_callback_SSLVerify_CRL DoS
  36. Apache Multiple Space Header DoS
  37. Apache Mod_include Local Buffer Overflow
  38. Macromedia JRun4 mod_jrun Apache Module Buffer Overflow
  39. Apache htpasswd Local Stack Overflow
  40. Apache mod_ssl Remote Buffer Overflow When Performing SSL Reverse Proxy
  41. Apache HTTPd Arbitrary Long HTTP Headers DoS (Exploit Code)
  42. Apache HTTPd Arbitrary Long HTTP Headers DoS
  43. cPanel mod_php suexec Taint Vulnerability
  44. Apache Memory Corruption in Various Architectures
  45. GroupWise WebAccess File Disclosure (GWAPACHE.CONF)
  46. Apache for Cygwin Directory Traversal (%5C)
  47. Apache-SSL Optional Client Certificate Vulnerability
  48. Hijacking Apache HTTP/HTTPS Services Using Mod_perl File Descriptor Leakage
  49. Apache Cocoon Directory Traversal Vulnerability
  50. Remote Vulnerabilties in mod_ntlm
  51. Apache/Tomcat Denial of Service and Information Leakage Vulnerability
  52. Apache Scoreboard Shared Memory
  53. Apache Discloses Source Code via POST Requests to a Location with WebDAV and CGI enabled
  54. Apache 1.3.x Shared Memory Scoreboard Vulnerabilities
  55. Apache 2 Cross-Site Scripting
  56. Exploit Code Release for Apache Directory Traversal (non-UNIX)
  57. Apache Web Server Directory Traversal and Path Disclosure Vulnerability (non UNIX)
  58. Apache 2.0 Vulnerability Affects non-UNIX Platforms
  59. Apache Tomcat Cross-Site Scripting
  60. Tomcat Multiple Directory Listing and Webroot Location Vulnerabilities
  61. Vulnerability in Apache for Win32 Batch File Processing (Remote Command Execution)