CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

462 matches found

OSV•added 2026/01/07 3:49 p.m.•4 views

CLSA-2026-1767800942 httpd: Fix of CVE-2025-58098

CVE-2025-58098: don't pass querry string args as command line arguments to SSI-invoked CGI scripts...

8.3CVSS5.8AI score0.00018EPSS

Exploits0References1

OSV•added 2025/12/29 4:51 p.m.•3 views

CLSA-2025-1767027096 httpd: Fix of CVE-2025-58098

CVE-2025-58098: prevent SSI args from being passed to CGI scripts...

8.3CVSS5.8AI score0.00018EPSS

Exploits0References1

Tenable Nessus•added 2025/12/24 12:0 a.m.•4 views

TencentOS Server 3: httpd:2.4 (TSSA-2025:0973)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0973 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.3CVSS5.9AI score0.00145EPSS

Exploits0References5

RedHat Linux•added 2025/12/22 1:33 a.m.•2 views

httpd: Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo

A permissions bypass flaw has been discovered in the apache HTTP server. Users with access to use the RequestHeader directive in htaccess can cause some CGI scripts to run under an unexpected userid...

5.4CVSS5.7AI score0.00041EPSS

Exploits0References6

RedhatCVE•added 2025/12/08 10:41 p.m.•3 views

CVE-2025-66200

moduserdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users with access to use the RequestHeader directive in htaccess can cause some CGI scripts to run under an unexpected userid. This issue affects Apache HTTP Server: from 2.4.7 through 2.4.65. Users are...

5.4CVSS6.5AI score0.00041EPSS

Exploits0References5

NVD•added 2025/12/05 11:15 a.m.•1 views

CVE-2025-66200

5.4CVSS0.00041EPSS

Exploits0References2

OSV•added 2025/12/05 11:15 a.m.•1 views

AZL-71528 CVE-2025-66200 affecting package httpd for versions less than 2.4.66-1

5.4CVSS5.7AI score0.00041EPSS

Exploits0References1

OSV•added 2025/12/05 11:15 a.m.•3 views

ALPINE-CVE-2025-66200

5.4CVSS6.9AI score0.00041EPSS

Exploits0References1

OSV•added 2025/12/05 11:15 a.m.•1 views

UBUNTU-CVE-2025-66200

5.4CVSS5.8AI score0.00041EPSS

Exploits0References5

EUVD•added 2025/12/05 11:2 a.m.•3 views

EUVD-2025-201403

5.4CVSS6.4AI score0.00041EPSS

Exploits0References3

Vulnrichment•added 2025/12/05 11:2 a.m.•1 views

CVE-2025-66200 Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo

6.6AI score0.00041EPSS

Exploits0References1

Cvelist•added 2025/12/05 11:2 a.m.•27 views

CVE-2025-66200 Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo

0.00041EPSS

Exploits0References1

CVE•added 2025/12/05 11:2 a.m.•539 views

CVE-2025-66200

CVE-2025-66200 affects Apache HTTP Server 2.4.7–2.4.65. A mod_userdir+suexec bypass via AllowOverride FileInfo lets users with htaccess access to the RequestHeader directive cause some CGI scripts to execute under an unexpected userid. Connected advisories confirm the fix is in 2.4.66 (e.g., Debi...

5.4CVSS6.6AI score0.00041EPSS

Exploits0References2Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2008-0900

Malware in sbrugna...

7.5CVSS6.1AI score0.01614EPSS

Exploits0References11

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-1999-0928

Malware in sbrugna...

7.5CVSS6.4AI score0.06198EPSS

Exploits0References3