logo
DATABASE RESOURCES PRICING ABOUT US

Apache Httpd < 2.4.41 : mod_rewrite potential open redirect

Description

Redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an an unexpected URL within the request URL.


Affected Software


CPE Name Name Version
apache httpd 2.4.39
apache httpd 2.4.38
apache httpd 2.4.37
apache httpd 2.4.35
apache httpd 2.4.34
apache httpd 2.4.33
apache httpd 2.4.30
apache httpd 2.4.29
apache httpd 2.4.28
apache httpd 2.4.27
apache httpd 2.4.26
apache httpd 2.4.25
apache httpd 2.4.23
apache httpd 2.4.20
apache httpd 2.4.18
apache httpd 2.4.17
apache httpd 2.4.16
apache httpd 2.4.12
apache httpd 2.4.10
apache httpd 2.4.9
apache httpd 2.4.7
apache httpd 2.4.6
apache httpd 2.4.4
apache httpd 2.4.3
apache httpd 2.4.2
apache httpd 2.4.1
apache httpd 2.4.0

Related