Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Web Server

Apache HTTP Server

The Apache HTTP Server Project is an effort to develop and maintain an open-source HTTP server for modern operating systems including UNIX and Windows. The goal of this project is to provide a secure efficient and extensible server that provides HTTP services in sync with the current HTTP standards.

Official Site:

https://httpd.apache.org/

Severity Summary:

Critical: 32 High: 96 Medium: 157 Low: 14
Reference
Title
Severity
CVE-2024-47252
Apache HTTP Server Improper Neutralization of Escape Meta or Control Sequences Vulnerability
High
CVE-2023-27522
Apache HTTP Server Inconsistent Interpretation of HTTP Requests (HTTP Request/Response Smuggling) Vulnerability
High
CVE-2006-20001
Apache HTTP Server Out-of-bounds Write Vulnerability
High
CVE-2024-38477
Apache HTTP Server NULL Pointer Dereference Vulnerability
High
CVE-1999-0236
Apache HTTP Server Vulnerability
High
CVE-2021-33193
Apache HTTP Server Other Vulnerability
High
CVE-2025-53020
Apache HTTP Server Missing Release of Memory after Effective Lifetime Vulnerability
High
CVE-2025-49812
Apache HTTP Server Improper Authentication Vulnerability
High
CVE-2025-49630
Apache HTTP Server Reachable Assertion Vulnerability
High
CVE-2024-43394
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability
High
CVE-2024-27316
Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2024-43204
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability
High
CVE-2024-42516
Apache HTTP Server Improper Input Validation Vulnerability
High
CVE-2024-39573
Apache HTTP Server Improper Input Validation Vulnerability
High
CVE-2024-38473
Apache HTTP Server Improper Encoding or Escaping of Output Vulnerability
High
CVE-2024-38472
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability
High
CVE-2023-38709
Apache HTTP Server Improper Validation of Specified Quantity in Input Vulnerability
High
CVE-2025-58098
Apache HTTP Server Insertion of Sensitive Information Into Sent Data Vulnerability
High
CVE-2025-59775
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability
High
CVE-2023-31122
Apache HTTP Server Out-of-bounds Read Vulnerability
High
CVE-2023-43622
Apache HTTP Server Uncontrolled Resource Consumption Vulnerability
High
CVE-2016-5387
Apache HTTP Server Vulnerability
High
CVE-2023-28625
Apache HTTP Server NULL Pointer Dereference Vulnerability
High
CVE-2009-1891
Apache HTTP Server Uncontrolled Resource Consumption Vulnerability
High
CVE-2011-3192
Apache HTTP Server Uncontrolled Resource Consumption Vulnerability
High
CVE-2013-2249
Apache HTTP Server Vulnerability
High
CVE-2002-0839
Apache HTTP Server Vulnerability
High
CVE-2003-0542
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
High
CVE-2004-0488
Apache HTTP Server Out-of-bounds Write Vulnerability
High
CVE-2006-3747
Apache HTTP Server Numeric Errors Vulnerability
High