apache support - An Overview
Incorrect escaping of output in mod_rewrite in Apache HTTP Server two.4.59 and earlier permits an attacker to map URLs to filesystem places that happen to be permitted for being served by the server but are not deliberately/straight reachable by any URL, leading to code execution or supply code disclosure.Apache’s configuration documents are usua