Description

mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server 2.2.11 allows remote attackers to obtain sensitive response data, intended for a client that sent an earlier POST request with no request body, via an HTTP request.

Remediation

References

CVE-2009-1191

Related Vulnerabilities

Sqlite CVE-2020-13631 Vulnerability (CVE-2020-13631)

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6333)

WordPress 5.4.x Multiple Vulnerabilities (5.4 - 5.4.4)

WordPress Plugin Newsletter Open Redirect (2.6.4.4)

WordPress Plugin User Registration-Custom Registration Form, Login Form And User Profile Cross-Site Scripting (2.0.1)

Severity

Medium

Classification

CVE-2009-1191

Tags

Missing Update Known Vulnerabilities