Lucene search
K

226 matches found

Debian CVE
Debian CVE
added 2025/12/05 1:40 p.m.7 views

CVE-2025-58098

Apache HTTP Server 2.4.65 and earlier with Server Side Includes SSI enabled and modcgid but not modcgi passes the shell-escaped query string to exec cmd="..." directives. This issue affects Apache HTTP Server before 2.4.66. Users are recommended to upgrade to version 2.4.66, which fixes the issue...

8.3CVSS7.6AI score0.01527EPSS
Exploits0
Cvelist
Cvelist
added 2025/12/05 1:40 p.m.121 views

CVE-2025-58098 Apache HTTP Server: Server Side Includes adds query string to #exec cmd=...

Apache HTTP Server 2.4.65 and earlier with Server Side Includes SSI enabled and modcgid but not modcgi passes the shell-escaped query string to exec cmd="..." directives. This issue affects Apache HTTP Server before 2.4.66. Users are recommended to upgrade to version 2.4.66, which fixes the issue...

0.01527EPSS
Exploits0References1
CVE
CVE
added 2025/12/05 1:40 p.m.837 views

CVE-2025-58098

CVE-2025-58098 affects Apache HTTP Server 2.4.65 and earlier when Server Side Includes (SSI) is enabled and mod_cgid (not mod_cgi) passes the shell-escaped query string to #exec cmd="..." directives, enabling potential command injection. The issue impacts Apache HTTP Server before 2.4.66; remedia...

8.3CVSS6.5AI score0.01527EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/12/05 1:40 p.m.7 views

CVE-2025-58098 Apache HTTP Server: Server Side Includes adds query string to #exec cmd=...

Apache HTTP Server 2.4.65 and earlier with Server Side Includes SSI enabled and modcgid but not modcgi passes the shell-escaped query string to exec cmd="..." directives. This issue affects Apache HTTP Server before 2.4.66. Users are recommended to upgrade to version 2.4.66, which fixes the issue...

8.3CVSS7.1AI score0.01527EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2025/12/05 1:40 p.m.10 views

CVE-2025-58098

Apache HTTP Server 2.4.65 and earlier with Server Side Includes SSI enabled and modcgid but not modcgi passes the shell-escaped query string to exec cmd="..." directives. This issue affects Apache HTTP Server before 2.4.66. Users are recommended to upgrade to version 2.4.66, which fixes the issue...

8.3CVSS7AI score0.01527EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-58098

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache HTTP Server 2.4.65 and earlier with Server Side Includes SSI enabled and modcgid but not modcgi passes the shell-escaped query string to exec cmd=...

8.3CVSS7.1AI score0.01527EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/12/04 12:0 a.m.4 views

Apache HTTP Server < 2.4.66 SSI Vulnerability - Linux

Apache HTTP Server is prone to a Server Side Includes SSI vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.3CVSS6.8AI score0.01527EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-3441

Malware in sbrugna...

7.5CVSS6.4AI score0.02505EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-7131

Malware in sbrugna...

7.5CVSS6.4AI score0.02103EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2000-0885

Malware in sbrugna...

5CVSS6.4AI score0.01224EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-0937

Malware in sbrugna...

7.5CVSS6.4AI score0.07629EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-32356

Malicious code in bioql PyPI...

6.6CVSS6.7AI score0.00652EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-46655

Malicious code in bioql PyPI...

7.2CVSS7AI score0.00972EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-32359

Malicious code in bioql PyPI...

6.6CVSS6.7AI score0.00611EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-32357

Malicious code in bioql PyPI...

6.6CVSS6.7AI score0.00652EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-32358

Malicious code in bioql PyPI...

6.6CVSS6.7AI score0.00652EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-32360

Malicious code in bioql PyPI...

6.6CVSS6.7AI score0.00611EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/10 12:0 a.m.4 views

PT-2025-49182

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions prior to 2.4.66 Description An issue exists in Apache HTTP Server on Windows when AllowEncodedSlashes is enabled and MergeSlashes is disabled. This can allow for Server-Side Request Forgery SSRF, potentially leading...

7.8CVSS6.6AI score0.00784EPSS
Exploits0References29
CNNVD
CNNVD
added 2025/05/23 12:0 a.m.2 views

WordPress plugin Healsoul 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

8.1CVSS7.8AI score0.00669EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 11:59 p.m.14 views

CVE-2022-43660

Improper neutralization of Server-Side Includes SSW within a web page in Movable Type series allows a remote authenticated attacker with Privilege of 'Manage of Content Types' may execute an arbitrary Perl script and/or an arbitrary OS command. Affected products/versions are as follows: Movable...

7.2CVSS7AI score0.00972EPSS
Exploits0References1
Rows per page
Query Builder