Filter

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

First published (updated )

maven/org.apache.solr:solr-coreApache Solr: Backup/Restore APIs allow for deployment of executables in malicious ConfigSets

8.8
EPSS
0.13%
First published (updated )

Apache SolrApache Solr: Solr can expose ZooKeeper credentials via Streaming Expressions

7.5
EPSS
0.05%
First published (updated )

maven/org.apache.solr:solr-coreApache Solr: Solr Schema Designer blindly "trusts" all configsets, possibly leading to RCE by unauthenticated users

7.5
EPSS
0.11%
First published (updated )

maven/org.apache.solr:solr-coreApache Solr: System Property redaction logic inconsistency can lead to leaked passwords

7.5
EPSS
0.11%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache SolrApache Solr information disclosure vulnerability through DataImportHandler

First published (updated )

Oracle Primavera UnifierApache Solr VelocityResponseWriter Plug-In Remote Code Execution Vulnerability

First published (updated )

Apache SolrApache Solr DataImportHandler Code Injection Vulnerability

First published (updated )

Apache SolrXEE

7.5
First published (updated )

Apache SolrApache Solr's Kerberos plugin can be configured to use delegation tokens, which allows an applicatio…

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache SolrXEE

First published (updated )

Apache SolrXEE

First published (updated )

Apache SolrSSRF

7.5
First published (updated )

Apache SolrPath Traversal

7.5
First published (updated )

Apache SolrXSS

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache SolrThe (1) UpdateRequestHandler for XSLT or (2) XPathEntityProcessor in Apache Solr before 4.1 allows r…

7.5
First published (updated )

Apache SolrPath Traversal

First published (updated )

Apache SolrThe DocumentAnalysisRequestHandler in Apache Solr before 4.3.1 does not properly use the EmptyEntity…

First published (updated )

Apache SolrXEE

First published (updated )

Apache SolrXSS

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache SolrXSS

First published (updated )

Apache SolrXSS

First published (updated )

Apache SolrXSS

First published (updated )

Apache SolrApache Solr uses a PKI based mechanism to secure inter-node communication when security is enabled. …

7.5
First published (updated )

Apache SolrIn Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes …

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache SolrSolr versions 1.3.0 to 1.4.1, 3.1.0 to 3.6.2 and 4.0.0 to 4.10.4 are vulnerable to an XML resource c…

7.5
First published (updated )

Apache SolrMalicious File Upload

First published (updated )

Apache SolrInput Validation

First published (updated )

Eclipse JettyEclipse Jetty is vulnerable to a denial of service, caused by an error when handling a request conta…

7.5
First published (updated )

Apache SolrApache Solr versions 6.6.0 to 6.6.6, 7.0.0 to 7.7.3 and 8.0.0 to 8.6.2 prevents some features consid…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203