Description
fcgid_spawn_ctl.c in the mod_fcgid module 2.3.6 for the Apache HTTP Server does not recognize the FcgidMaxProcessesPerClass directive for a virtual host, which makes it easier for remote attackers to cause a denial of service (memory consumption) via a series of HTTP requests that triggers a process count higher than the intended limit.
Remediation
References
Related Vulnerabilities
WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Arbitrary File Upload (0.1.0.22)
MySQL CVE-2014-6484 Vulnerability (CVE-2014-6484)
WordPress Plugin Google Analytics Counter Tracker PHP Object Injection (3.4.0)
Oracle JRE CVE-2019-2978 Vulnerability (CVE-2019-2978)
WordPress Plugin Easy Media Download Cross-Site Scripting (1.1.6)