suexec

The Apache HTTP Server project has published a security fix addressing CVE-2025-66200, a moderate-severity bypass in the interaction between mod_userdir, suexec, and AllowOverride FileInfo that can allow a local web‑site owner (or any actor able to control an .htaccess file) to cause certain CGI...