Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache solr 4.1.0 vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2013-6408
The DocumentAnalysisRequestHandler in Apache Solr prior to 4.3.1 does not properly use the EmptyEntityResolver, which allows remote malicious users to have an unspecified impact via XML data containing an external entity declaration in conjunction with an entity reference, relate...
Apache Solr 4.0.0
Apache Solr 3.6.1
Apache Solr 4.2.1
Apache Solr 3.6.0
Apache Solr 4.2.0
Apache Solr 3.6.2
Apache Solr 4.1.0
Apache Solr
4.3
CVSSv2
CVE-2013-6397
Directory traversal vulnerability in SolrResourceLoader in Apache Solr prior to 4.6 allows remote malicious users to read arbitrary files via a .. (dot dot) or full pathname in the tr parameter to solr/select/, when the response writer (wt parameter) is set to XSLT. NOTE: this ca...
Apache Solr 4.5.0
Apache Solr 4.0.0
Apache Solr
Apache Solr 4.2.1
Apache Solr 4.3.0
Apache Solr 4.4.0
Apache Solr 4.2.0
Apache Solr 4.3.1
Apache Solr 4.1.0
1 Github repository
4.3
CVSSv2
CVE-2014-3628
Cross-site scripting (XSS) vulnerability in the Admin UI Plugin / Stats page in Apache Solr 4.x prior to 4.10.3 allows remote malicious users to inject arbitrary web script or HTML via the fieldvaluecache object.
Apache Solr 4.5.0
Apache Solr 4.7.1
Apache Solr 4.10.2
Apache Solr 4.0.0
Apache Solr 4.6.1
Apache Solr 4.2.1
Apache Solr 4.10.1
Apache Solr 4.3.0
Apache Solr 4.8.0
Apache Solr 4.9.1
Apache Solr 4.7.2
Apache Solr 4.4.0
Apache Solr 4.2.0
Apache Solr 4.6.0
Apache Solr 4.5.1
Apache Solr 4.3.1
Apache Solr 4.7.0
Apache Solr 4.10.0
Apache Solr 4.8.1
Apache Solr 4.1.0
Apache Solr 4.9.0
9.3
CVSSv2
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1159 Github repositories
28 Articles
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started