Create an account

Very important

  • To access the important data of the forums, you must be active in each forum and especially in the leaks and database leaks section, send data and after sending the data and activity, data and important content will be opened and visible for you.
  • You will only see chat messages from people who are at or below your level.
  • More than 500,000 database leaks and millions of account leaks are waiting for you, so access and view with more activity.
  • Many important data are inactive and inaccessible for you, so open them with activity. (This will be done automatically)

0Day Forums Hacking & Exploits Website Hacking Apache 2.4.49 - Path Traversal Vulnerability

Thread Rating:
  • 684 Vote(s) - 3.42 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Options
Apache 2.4.49 - Path Traversal Vulnerability

Offline hudaia


Member
*
Member
Posts: 0
Threads: 0
Joined: Aug 2021
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#1
10-08-2021, 12:51 AM
There's currently a Path Traversal vulnerability for Apache 2.4.49. I see several people out-of-date.

Reply

Offline neoplasticism711


Valued member
***
Valued member
Posts: 0
Threads: 0
Joined: May 2020
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#2
10-08-2021, 02:41 AM
Quote:(10-08-2021, 03:51 AM)Oni Wrote:

[To see links please register here]

I see several people out-of-date.
You mean several people too much up-to-date right? :biggrin:
This issue only affects Apache 2.4.49 and not earlier versions, although it seems it hasn't been published yet for most package manager (2.4.48-3.1 is the one on Debian stable apt).
Reply

Offline placus102349


Valued member
***
Valued member
Posts: 0
Threads: 0
Joined: Jul 2019
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#3
10-08-2021, 04:17 AM
Interesting. The vulnerable version was released on September 15th 2021, but luckily it had not yet been included in any major Linux distribution repositories (Ubuntu, for example, is still at 2.4.41). According to Shodan, 112,000 active

[To see links please register here]

are on the public internet, compared to the 1,719,000 total active Apache installations.

Additional information available in NVD/NIST:

[To see links please register here]

Reply

« Next Oldest
Next Newest »


Forum Jump:


Users browsing this thread:
1 Guest(s)

©0Day  2016 - 2023 | All Rights Reserved.  Made with    for the community. Connected through