Incorrect escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and previously permits an attacker to map URLs to filesystem areas which can be permitted to become served with the server but aren't intentionally/right reachable by any URL, resulting in code execution or source code disclosure. block you can https://www.hostscheap.com/apache-support-service
