Making sense of Apache httpd's CVE-2023-25690

This page summarizes the projects mentioned and recommended in the original post on /r/AskNetsec
Web Docker Httpd vulnerability-environment docker-compose

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • Apache

    Mirror of Apache HTTP Server. Issues: http://issues.apache.org

    • After looking into the commit I think the space is actually there for a reason.

  • vulhub

    Pre-Built Vulnerable Environments Based on Docker-Compose

    • I just found this commit (https://github.com/vulhub/vulhub/pull/413/files) for vulnhub containing a POC. I still don't understand exactly how they get to secret.txt in their example but it's a huge step forward. Plenty of mistakes in the Changelog.

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts