A vulnerability has been found in Apache HTTP Server 2.4.49 (Web Server) and classified as critical. This vulnerability affects an unknown code of the component Path Normalization. Upgrading to version 2.4.50 eliminates this vulnerability. The upgrade is hosted for download at httpd.apache.org.
Apache HTTP Server 2.4.49 Path Normalization path traversal
CVE-2022-36980 : IVANTI AVALANCHE 18.104.22.16890 ENTERPRISESERVER SERVICE TOCTOU
Description This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 22.214.171.12490. Although authentication is required
CVE-2022-23122 : NETATALK PRIOR 3.1.13 SETFILPARAMS STACK-BASED OVERFLOW
Description This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to
CVE-2023-28102 : DISCORDRB ENCODER.RB FILE OS COMMAND INJECTION
Description discordrb is an implementation of the Discord API using Ruby. In discordrb before commit `91e13043ffa` the `encoder.rb` file unsafely