RHEL 8 : httpd:2.4 (RHSA-2026:0010)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0010 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: modmd: Apache HTTP...

RHEL 9 : mod_md (RHSA-2026:0029)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:0029 advisory. This module manages common properties of domains for one or more virtual hosts. Specifically it can use the ACME protocol to automate certificate...

RHEL 8 : httpd:2.4 (RHSA-2026:0012)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0012 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: modmd: Apache HTTP...

PT-2026-1285

Name of the Vulnerable Software and Affected Versions Apache SIS versions 0.4 through 1.5 Description An improper restriction of XML external entity reference issue exists in Apache SIS. An attacker can craft XML files that, when parsed by Apache SIS, reveal the content of local files on the...

Exploit for Deserialization of Untrusted Data in Apache Struts

CVE-2017-9805: Apache Struts 2 S2-052 RCE Analizi Bu depo, Ap...

Exploit for Improper Handling of Exceptional Conditions in Apache Struts

SSP ASSIGNEMENT 3 : CVE poc Exploitation of CVE-2017-5638...

PT-2026-1218

CVE-2026-21645 - Apache HTTP Server Unvalidated User Input CVE ID : CVE-2026-21645 Published : Jan. 3, 2026, 4:15 a.m. | 3 hours, 20 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

PT-2026-1232

CVE-2026-21650 - Apache HTTP Server Cross-Site Request Forgery CVE ID : CVE-2026-21650 Published : Jan. 3, 2026, 4:15 a.m. | 3 hours, 20 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and...

PT-2026-1219

CVE-2026-21646 - Apache HTTP Server Remote Code Execution CVE ID : CVE-2026-21646 Published : Jan. 3, 2026, 4:15 a.m. | 3 hours, 20 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

PT-2026-1230

CVE-2026-21648 - Apache HTTP Server Unvalidated User Input CVE ID : CVE-2026-21648 Published : Jan. 3, 2026, 4:15 a.m. | 3 hours, 20 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

PT-2026-1234

CVE-2026-21652 - Apache HTTP Server Cross-Site Request Forgery CVE ID : CVE-2026-21652 Published : Jan. 3, 2026, 4:15 a.m. | 3 hours, 20 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and...

PT-2026-1217

CVE-2026-21644 - Apache HTTP Server Unvalidated Redirect CVE ID : CVE-2026-21644 Published : Jan. 3, 2026, 4:15 a.m. | 3 hours, 20 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE-2025-47411

A user with a legitimate non-administrator account can exploit a vulnerability in the user ID creation mechanism in Apache StreamPipes that allows them to swap the username of an existing user with that of an administrator. This vulnerability allows an attacker to gain administrative control over...

CVE-2025-48769

Use After Free vulnerability was discovered in fs/vfs/fsrename code of the Apache NuttX RTOS, that due recursive implementation and single buffer use by two different pointer variables allowed arbitrary user provided size buffer reallocation and write to the previously freed heap chunk, that in...

Exploit for Unrestricted Upload of File with Dangerous Type in Apache Struts

$ python3 ex...

Exploit for Code Injection in Apache Commons_Text

CVE-2022-42889-text4shell Description This script is a pe...

PT-2026-1176

CVE-2025-34166 - Apache HTTP Server Path Traversal CVE ID : CVE-2025-34166 Published : Jan. 2, 2026, 5:15 p.m. | 14 minutes ago Description : Rejected reason: This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure. Severity: 0.0 | NA Visit the link for more...

PT-2026-1172

CVE-2025-34131 - Apache HTTP Server Remote Code Execution Vulnerability CVE ID : CVE-2025-34131 Published : Jan. 2, 2026, 5:15 p.m. | 14 minutes ago Description : Rejected reason: This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure. Severity: 0.0 | NA Visi...

PT-2026-1197

CVE-2025-34214 - Apache HTTP Server Remote Code Execution CVE ID : CVE-2025-34214 Published : Jan. 2, 2026, 5:15 p.m. | 14 minutes ago Description : Rejected reason: This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure. Severity: 0.0 | NA Visit the link for...

PT-2026-1171

CVE-2025-34122 - Apache HTTP Server Remote Code Execution CVE ID : CVE-2025-34122 Published : Jan. 2, 2026, 5:15 p.m. | 14 minutes ago Description : Rejected reason: This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure. Severity: 0.0 | NA Visit the link for...