Description
The log files in Apache web server contain information directly supplied by clients and does not filter or quote control characters, which could allow remote attackers to hide HTTP requests and spoof source IP addresses when logs are viewed with UNIX programs such as cat, tail, and grep.
Remediation
References
Related Vulnerabilities
WordPress Plugin Portfolio by BestWebSoft Multiple Cross-Site Scripting Vulnerabilities (2.27)
WebLogic CVE-2020-14644 Vulnerability (CVE-2020-14644)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-10086)
Internet Information Services Other Vulnerability (CVE-2001-0096)
WordPress Plugin Homepage SlideShow 'upload.php' Arbitrary File Upload (2.0)