Poor escaping of output in mod_rewrite in Apache HTTP Server two.4.fifty nine and earlier permits an attacker to map URLs to filesystem destinations which have been permitted to get served by the server but are usually not intentionally/immediately reachable by any URL, leading to code execution or resource code disclosure. https://www.hostscheap.com/apache-support-service
