| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-58098 | Apache HTTP Server: Server Side Includes adds query string to #exec cmd=... | Apache Software Foundation | Apache HTTP Server | 低危 | - | 2025-12-05 13:40:40 | Deep Dive |
| CVE-2025-66200 | Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo | Apache Software Foundation | Apache HTTP Server | 中危 | - | 2025-12-05 11:02:26 | Deep Dive |
| CVE-2025-65082 | Apache HTTP Server: CGI environment variable override | Apache Software Foundation | Apache HTTP Server | 低危 | - | 2025-12-05 10:46:27 | Deep Dive |
| CVE-2025-59775 | Apache HTTP Server: NTLM Leakage on Windows through UNC SSRF | Apache Software Foundation | Apache HTTP Server | 中危 | - | 2025-12-05 10:17:04 | Deep Dive |
| CVE-2025-55753 | Apache HTTP Server: mod_md (ACME), unintended retry intervals | Apache Software Foundation | Apache HTTP Server | 高危 | - | 2025-12-05 10:12:22 | Deep Dive |
| CVE-2025-58186 | Lack of limit when parsing cookies can cause memory exhaustion in net/http | Go standard library | net/http | - | - | 2025-10-29 22:10:14 | Deep Dive |
| CVE-2025-61689 | HTTP.jl vulnerable to Header injection/Response splitting via header construction. | JuliaWeb | HTTP.jl | - | - | 2025-10-10 16:48:42 | Deep Dive |
| CVE-2025-36274 | IBM Aspera HTTP Gateway information disclosure | IBM | Aspera HTTP Gateway | High | 7.5 | 2025-09-26 14:14:01 | Deep Dive |
| CVE-2025-47910 | CrossOriginProtection insecure bypass patterns not limited to exact matches in net/http | Go standard library | net/http | - | - | 2025-09-22 21:01:55 | Deep Dive |
| CVE-2025-58261 | WordPress Mavis HTTPS to HTTP Redirection Plugin <= 1.4.3 - Cross Site Request Forgery (CSRF) Vulnerability | PressPage Entertainment Inc | Mavis HTTPS to HTTP Redirection | High | 7.1 | 2025-09-22 18:23:21 | Deep Dive |
| CVE-2025-40920 | Catalyst::Authentication::Credential::HTTP versions 1.018 and earlier for Perl use insecurely generated nonces | ETHER | Catalyst::Authentication::Credential::HTTP | - | - | 2025-08-11 20:19:58 | Deep Dive |
| CVE-2025-54090 | Apache HTTP Server: 'RewriteCond expr' always evaluates to true in 2.4.64 | Apache Software Foundation | Apache HTTP Server | 中危 | - | 2025-07-23 13:19:25 | Deep Dive |
| CVE-2025-34096 | Easy File Sharing HTTP Server 7.2 Buffer Overflow via POST to /sendemail.ghp | EFS Software Inc. | Easy File Sharing HTTP Server | - | - | 2025-07-10 19:15:06 | Deep Dive |
| CVE-2025-53020 | Apache HTTP Server: HTTP/2 DoS by Memory Increase | Apache Software Foundation | Apache HTTP Server | 中危 | - | 2025-07-10 16:59:06 | Deep Dive |
| CVE-2025-49812 | Apache HTTP Server: mod_ssl TLS upgrade attack | Apache Software Foundation | Apache HTTP Server | - | - | 2025-07-10 16:58:24 | Deep Dive |
| CVE-2025-49630 | Apache HTTP Server: mod_proxy_http2 denial of service | Apache Software Foundation | Apache HTTP Server | - | - | 2025-07-10 16:57:40 | Deep Dive |
| CVE-2025-23048 | Apache HTTP Server: mod_ssl access control bypass with session resumption | Apache Software Foundation | Apache HTTP Server | - | - | 2025-07-10 16:56:54 | Deep Dive |
| CVE-2024-43394 | Apache HTTP Server: SSRF on Windows due to UNC paths | Apache Software Foundation | Apache HTTP Server | 中危 | - | 2025-07-10 16:56:08 | Deep Dive |
| CVE-2024-47252 | Apache HTTP Server: mod_ssl error log variable escaping | Apache Software Foundation | Apache HTTP Server | - | - | 2025-07-10 16:55:20 | Deep Dive |
| CVE-2024-43204 | Apache HTTP Server: SSRF with mod_headers setting Content-Type header | Apache Software Foundation | Apache HTTP Server | - | - | 2025-07-10 16:54:16 | Deep Dive |