Description
Apache does not filter terminal escape sequences from its error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences.
Remediation
References
Related Vulnerabilities
OpenSSL Inadequate Encryption Strength Vulnerability (CVE-2020-1968)
MySQL CVE-2022-21344 Vulnerability (CVE-2022-21344)
PHP NULL Pointer Dereference Vulnerability (CVE-2018-14884)
WordPress Plugin Subscriptions & Memberships for PayPal Unspecified Vulnerability (1.1.5)
WordPress Plugin Custom Post Type Relations Cross-Site Scripting (1.0)