Description Apache HTTP Server versions 2.4.39 to 2.4.46 Unexpected matching behavior with 'MergeSlashes OFF' Remediation References CVE-2021-30641 Related Vulnerabilities XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16684) WordPress Anti-CSRF Token Security Bypass Weakness (3.3.1) XOOPS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-7290) Ruby on Rails CVE-2015-3227 Vulnerability (CVE-2015-3227) WordPress Plugin eShop Multiple Vulnerabilities (6.3.14) Severity Medium Classification CVE-2021-30641 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Tags Missing Update Known Vulnerabilities