The host is installed with Apache HTTP Server 2.4.0 before 2.4.24 and is prone to an IP address spoofing vulnerability. A flaw is present in the application, which fails to properly handle an issue in configurations using proxying with mod_remoteip and certain mod_rewrite rules. Successful exploitation could allow an attacker to spoof their IP address for logging and PHP scripts.