Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
solr vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6288
Unspecified vulnerability in the Apache Solr for TYPO3 (solr) extension prior to 2.8.3 for TYPO3 has unknown impact and remote attack vectors, related to "Insecure Unserialize."
Ingo Renner Apache Solr 2.1.0
Ingo Renner Apache Solr 1.3.1
Ingo Renner Apache Solr 2.8.0
Ingo Renner Apache Solr 2.2.2
Ingo Renner Apache Solr
Ingo Renner Apache Solr 2.8.1
Ingo Renner Apache Solr 1.3.0
Ingo Renner Apache Solr 1.0
Ingo Renner Apache Solr 2.2.1
Ingo Renner Apache Solr 2.2.0
9.1
CVSSv3
CVE-2017-11694
MEDHOST Document Management System contains hard-coded credentials that are used for Apache Solr access. An attacker with knowledge of the hard-coded credentials and the ability to communicate directly with Apache Solr may be able to obtain or modify sensitive patient and financi...
Medhost Medhost Document Management System -
NA
CVE-2013-6289
Cross-site scripting (XSS) vulnerability in the Apache Solr for TYPO3 (solr) extension prior to 2.8.3 for TYPO3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Ingo Renner Apache Solr 2.8.1
Ingo Renner Apache Solr 2.8.0
Ingo Renner Apache Solr 1.0
Ingo Renner Apache Solr 2.2.0
Ingo Renner Apache Solr 2.1.0
Ingo Renner Apache Solr 2.2.2
Ingo Renner Apache Solr 2.2.1
Ingo Renner Apache Solr
Ingo Renner Apache Solr 1.3.1
Ingo Renner Apache Solr 1.3.0
7.5
CVSSv3
CVE-2022-41398
The optional Global Search feature for Sage 300 through version 2022 uses a set of hard-coded credentials for the accompanying Apache Solr instance. This issue could allow malicious users to login to the Solr dashboard with admin privileges and access sensitive information.
Sage Sage 300
5.5
CVSSv3
CVE-2018-20917
cPanel prior to 70.0.23 allows any user to disable Solr (SEC-371).
Cpanel Cpanel
9.8
CVSSv3
CVE-2019-14222
An issue exists in Alfresco Community Edition versions 6.0 and lower. An unauthenticated, remote attacker could authenticate to Alfresco's Solr Web Admin Interface. The vulnerability is due to the presence of a default private key that is present in all default installations...
Alfresco Alfresco
6.5
CVSSv3
CVE-2016-6353
Cloudera Search in CDH prior to 5.7.0 allows unauthorized document access because Solr Queries by document id can bypass Sentry document-level security via the RealTimeGetHandler.
Cloudera Cdh
7.5
CVSSv3
CVE-2022-47501
Arbitrary file reading vulnerability in Apache Software Foundation Apache OFBiz when using the Solr plugin. This is a pre-authentication attack. This issue affects Apache OFBiz: prior to 18.12.07.
Apache Ofbiz
5.3
CVSSv3
CVE-2023-46819
Missing Authentication in Apache Software Foundation Apache OFBiz when using the Solr plugin. This issue affects Apache OFBiz: prior to 18.12.09. Users are recommended to upgrade to version 18.12.09
Apache Ofbiz
6.5
CVSSv3
CVE-2020-4307
IBM Security Guardium 11.1 could allow an attacker on the same network to gain access to the Solr dashboard and cause a denial of service attack. IBM X-Force ID: 176997.
Ibm Security Guardium 11.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »