CVE-2013-2249

mod_session_dbd.c in the mod_session_dbd module in the Apache HTTP Server before 2.4.5 proceeds with save operations for a session without considering the dirty flag and the requirement for a new session ID, which has unspecified impact and remote attack vectors.

We have discovered 459,428 live websites that are affected by CVE-2013-2249.

Test my site



Affected Software

Product  Apache
Category Web Servers
Vulnerable Domains459,428 live websites (14.56% of Apache install base)
Vulnerable Versions
  • from 0 before 2.4.5
Vulnerable Versions Count93 versions ( 63.27% of all versions)



Details

  • Published - Jul 23, 2013
  • Updated - Aug 6, 2024

CVE-2013-2249 usage by Country

United States82,022 websites


Taiwan105,414 websites
Germany41,633 websites
Japan32,171 websites
Russia20,705 websites
France16,013 websites
Czech Republic12,667 websites
Korea, South12,546 websites
GB12,357 websites
Netherlands11,069 websites

CVE-2013-2249 usage by TLD

.com202,859 websites
.de32,140 websites
.net19,952 websites
.ru17,856 websites
.org15,379 websites
.jp10,575 websites
.cz10,364 websites
.info10,159 websites
.nl7,086 websites
.it6,789 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2013-2249

Top websites that are affected by CVE-2013-2249. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*****.***********.com Canada***
*********.******.net United States*,***
****.**.pl Poland*,***
******.com Japan*,***
********.********.de Germany*,***
******.****************.com United States*,***
****.***********.de Germany*,***
**********.com United States*,***
****.**********.com United States*,***
*****.**********.com United States*,***
See full domain list

FAQ

A total of 459,428 websites have been identified as vulnerable to CVE-2013-2249, discovered through global website indexing conducted by WebTechSurvey.
Apache is susceptible to CVE-2013-2249 vulnerability.
Apache versions before 2.4.5 are vulnerable to CVE-2013-2249.
Version 2.4.5 of Apache addresses the CVE-2013-2249 security vulnerability.

References