This Metasploit module scans for an unauthenticated RCE vulnerability which exists in Apache version 2.4.49 (CVE-2021-41773). If files outside of the document root are not protected by ‘require all denied’ and CGI has been explicitly enabled, it can be used to execute arbitrary commands (Remote Command Execution). This vulnerability has been reintroduced in Apache 2.4.50 fix (CVE-2021-42013).
8661970ef7fbc7bc8a93b978a820b094101fa41f1545520eb469ee134ef69aa9
Gentoo Linux Security Advisory 202208-20 - Multiple vulnerabilities have been discovered in Apache Webserver, the worst of which could result in remote code execution. Versions less than 2.4.54 are affected.
09faf82799a2bf38cabe52ae6e5241cdb6c0783b19a0355526c5faf16d5eadc3
Apache version 2.4.50 remote code execution exploit that leverages a traversal as identified in CVE-2021-42013. Written in C.
64d8677bc7be110891aa555bf10e259d5602cd7d458c4a59da80719f277ba28b
This document aims at explaining some recent vulnerabilities in Apache HTTP Server that leads to attacks like path traversal and remote code execution.
f1aae18afbd9ad17a4af83ba0fe8f963226438309f210e48576d57b0bdf705a2
This is another variant of the Apache HTTP server version 2.4.50 remote code execution exploit.
1aab010960ead5e3662859fd06680b20932ece6ecf7a7c80a05437497896bb8f
This Metasploit module exploits an unauthenticated remote code execution vulnerability which exists in Apache version 2.4.49 (CVE-2021-41773). If files outside of the document root are not protected by ‘require all denied’ and CGI has been explicitly enabled, it can be used to execute arbitrary commands. This vulnerability has been reintroduced in the Apache 2.4.50 fix (CVE-2021-42013).
a75779abdd3a9f2a319a34c0efbba4f95b420f39624081c3a13752641b7c8d6d
Apache HTTP Server version 2.4.50 remote code execution exploit.
486eba2974d21ce35aa31dc7a6504701fc48220f6cf03add5457f12164885ccf
Apache HTTP Server version 2.4.50 suffers from path traversal and code execution vulnerabilities.
75aa94003e00f9bc304726a005c80e01c7bce1e6aabc71988646f014ecb8e58e