Description Apache HTTP Server versions 2.4.39 to 2.4.46 Unexpected matching behavior with 'MergeSlashes OFF' Remediation References CVE-2021-30641 Related Vulnerabilities WordPress Plugin Yasr-Yet Another Stars Rating PHP Object Injection (1.8.6) WordPress Plugin Portrait-Archiv.com Photostore Cross-Site Scripting (3.1) WordPress Plugin RegistrationMagic-Custom Registration Forms, User Registration, Payment, and User Login PHP Object Injection (3.7.9.2) IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-4249) IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20518) Severity Medium Classification CVE-2021-30641 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Tags Missing Update Known Vulnerabilities