CVE-2025-58098 - How a Dangerous Bug in Apache HTTP Server's SSI Could Let Attackers Run Shell Commands
A serious security issue, identified as CVE-2025-58098, has been discovered in the Apache HTTP Server (versions 2.4.65 and earlier). This vulnerability mainly affects
CVE-2025-66200 - Exploiting mod_userdir + suEXEC Bypass via AllowOverride FileInfo Weakness in Apache HTTP Server
A new vulnerability has been discovered in Apache HTTP Server (CVE-2025-66200) that could allow attackers to bypass user isolation provided by suEXEC when combined with
CVE-2025-65082 - Exploiting Environment Variable Handling in Apache HTTP Server (2.4. – 2.4.65)
CVE-2025-65082 is a fresh vulnerability discovered in the Apache HTTP Server, affecting all versions from 2.4. through 2.4.65. This bug revolves around
CVE-2025-59775 - Dangerous SSRF Flaw in Apache HTTP Server on Windows Can Leak NTLM Hashes
A new critical vulnerability has been identified in the popular Apache HTTP Server software on Windows systems. Tracked as CVE-2025-59775, this issue opens the door
CVE-2025-55753 - Integer Overflow in Apache HTTP Server’s ACME Renewal Timer Can Lead to Certificate Flood
In early 2025, a new vulnerability was disclosed in the Apache HTTP Server, one of the world’s most popular web servers. This vulnerability, tracked
Episode
00:00:00
00:00:00