Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Web Server

Apache HTTP Server

The Apache HTTP Server Project is an effort to develop and maintain an open-source HTTP server for modern operating systems including UNIX and Windows. The goal of this project is to provide a secure efficient and extensible server that provides HTTP services in sync with the current HTTP standards.

Official Site:

https://httpd.apache.org/

Severity Summary:

Critical: 36 High: 108 Medium: 165 Low: 14
Reference
Title
Severity
CVE-2026-43951
Apache HTTP Server Out-of-bounds Read Vulnerability
Medium
CVE-2004-0942
Apache HTTP Server Other Vulnerability
Medium
CVE-2008-0455
Apache HTTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2005-1268
Apache HTTP Server Off-by-one Error Vulnerability
Medium
CVE-2007-6514
Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2005-2970
Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability
Medium
CVE-2006-3918
Apache HTTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2006-5752
Apache HTTP Server Other Vulnerability
Medium
CVE-2007-3304
Apache HTTP Server Vulnerability
Medium
CVE-2008-0005
Apache HTTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2007-3847
Apache HTTP Server Out-of-bounds Read Vulnerability
Medium
CVE-2008-2364
Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability
Medium
CVE-2007-6203
Apache HTTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2007-6422
Apache HTTP Server Resource Management Errors Vulnerability
Medium
CVE-2009-3095
Apache HTTP Server Other Vulnerability
Medium
CVE-2011-3348
Apache HTTP Server Uncontrolled Resource Consumption Vulnerability
Medium
CVE-2011-0419
Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability
Medium
CVE-2010-0434
Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2014-0098
Apache HTTP Server Vulnerability
Medium
CVE-2012-0031
Apache HTTP Server Vulnerability
Medium
CVE-2012-0053
Apache HTTP Server Vulnerability
Medium
CVE-2012-0883
Apache HTTP Server Vulnerability
Medium
CVE-2009-1191
Apache HTTP Server Vulnerability
Medium
CVE-2014-3581
Apache HTTP Server NULL Pointer Dereference Vulnerability
Medium
CVE-2007-3303
Apache HTTP Server Improper Control of Generation of Code (Code Injection) Vulnerability
Medium
CVE-2022-29404
Apache Denial of service in mod_lua r:parsebody Vulnerability
Medium
CVE-2022-28614
Apache read beyond bounds via ap_rwrite() Vulnerability
Medium
CVE-2022-28330
Apache read beyond bounds in mod_isapi Vulnerability
Medium
CVE-2019-0197
Apache HTTP Server Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) Vulnerability
Medium
CVE-2020-1934
Apache HTTP Server Use of Uninitialized Resource Vulnerability
Medium