Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Web Server

Apache HTTP Server

The Apache HTTP Server Project is an effort to develop and maintain an open-source HTTP server for modern operating systems including UNIX and Windows. The goal of this project is to provide a secure efficient and extensible server that provides HTTP services in sync with the current HTTP standards.

Official Site:

https://httpd.apache.org/

Severity Summary:

Critical: 32 High: 96 Medium: 157 Low: 14
Reference
Title
Severity
CVE-2025-65082
Apache HTTP Server Improper Neutralization of Escape Meta or Control Sequences Vulnerability
Medium
CVE-2020-11985
Apache HTTP Server Insufficient Verification of Data Authenticity Vulnerability
Medium
CVE-2018-1283
Apache HTTP Server Vulnerability
Medium
CVE-2016-8612
Apache HTTP Server Improper Input Validation Vulnerability
Medium
CVE-2007-6388
Apache HTTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2014-3583
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
Medium
CVE-2009-0023
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
Medium
CVE-2013-4352
Apache HTTP Server Other Vulnerability
Medium
CVE-2014-0117
Apache HTTP Server Improper Input Validation Vulnerability
Medium
CVE-2014-0231
Apache HTTP Server Resource Management Errors Vulnerability
Medium
CVE-2005-2088
Apache HTTP Server Inconsistent Interpretation of HTTP Requests (HTTP Request/Response Smuggling) Vulnerability
Medium
CVE-2014-3523
Apache HTTP Server Resource Management Errors Vulnerability
Medium
CVE-2007-1863
Apache HTTP Server Other Vulnerability
Medium
CVE-2016-1546
Apache HTTP Server Resource Management Errors Vulnerability
Medium
CVE-2009-3720
Apache HTTP Server Vulnerability
Medium
CVE-2007-3304
Apache HTTP Server Vulnerability
Medium
CVE-2015-0228
Apache HTTP Server Improper Input Validation Vulnerability
Medium
CVE-2015-0253
Apache HTTP Server Other Vulnerability
Medium
CVE-2015-3183
Apache HTTP Server DEPRECATED: Code Vulnerability
Medium
CVE-2015-3185
Apache HTTP Server Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2007-4465
Apache HTTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2008-0005
Apache HTTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2006-3918
Apache HTTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2006-5752
Apache HTTP Server Other Vulnerability
Medium
CVE-2000-0869
Apache HTTP Server Other Vulnerability
Medium
CVE-2001-0729
Apache HTTP Server Other Vulnerability
Medium
CVE-2001-0730
Apache HTTP Server Other Vulnerability
Medium
CVE-2001-0731
Apache HTTP Server Other Vulnerability
Medium
CVE-2001-1072
Apache HTTP Server Other Vulnerability
Medium
CVE-2001-1342
Apache HTTP Server Other Vulnerability
Medium