Description
The authentication module for Apache 2.0.40 through 2.0.45 on Unix does not properly handle threads safely when using the crypt_r or crypt functions, which allows remote attackers to cause a denial of service (failed Basic authentication with valid usernames and passwords) when a threaded MPM is used.
Remediation
References
Related Vulnerabilities
WordPress Plugin Computer Repair Shop Cross-Site Scripting (1.0)
Craft CMS Missing Encryption of Sensitive Data Vulnerability (CVE-2022-37783)
WordPress Plugin Order Export & Order Import for WooCommerce Cross-Site Request Forgery (1.6.0)
Django Inefficient Regular Expression Complexity Vulnerability (CVE-2023-36053)
WordPress Plugin Contact Bank-Contact Form Builder for WordPress Cross-Site Scripting (2.0.69)