Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Apache HTTP Server Cross-Site Scripting (XSS) in URL Rewrite Module
MINI-ph27-wr67-cxhr
Summary
The Apache HTTP Server's URL Rewrite module has a vulnerability that allows an attacker to inject malicious code into a website, potentially stealing user data or taking control of the site. This affects websites that use the Apache HTTP Server and the URL Rewrite module. To protect your site, upgrade to the latest version of the module.
What to do
- Update jenkins to version 2.549-r0.
- Update jenkins-compat to version 2.549-r0.
- Update jenkins-remoting to version 2.549-r0.
- Update jenkins-docker-agent to version 2.549-r0.
- Update jenkins-advanced-compat to version 2.549-r0.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | jenkins | <= 2.549-r0 | 2.549-r0 |
| – | jenkins-compat | <= 2.549-r0 | 2.549-r0 |
| – | jenkins-remoting | <= 2.549-r0 | 2.549-r0 |
| – | jenkins-docker-agent | <= 2.549-r0 | 2.549-r0 |
| – | jenkins-advanced-compat | <= 2.549-r0 | 2.549-r0 |
Original title
MINI-ph27-wr67-cxhr
Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026