Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
solr vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2013-6288
Unspecified vulnerability in the Apache Solr for TYPO3 (solr) extension prior to 2.8.3 for TYPO3 has unknown impact and remote attack vectors, related to "Insecure Unserialize."
Ingo Renner Apache Solr 2.1.0
Ingo Renner Apache Solr 1.3.1
Ingo Renner Apache Solr 2.8.0
Ingo Renner Apache Solr 2.2.2
Ingo Renner Apache Solr
Ingo Renner Apache Solr 2.8.1
Ingo Renner Apache Solr 1.3.0
Ingo Renner Apache Solr 1.0
Ingo Renner Apache Solr 2.2.1
Ingo Renner Apache Solr 2.2.0
570
VMScore
CVE-2017-11694
MEDHOST Document Management System contains hard-coded credentials that are used for Apache Solr access. An attacker with knowledge of the hard-coded credentials and the ability to communicate directly with Apache Solr may be able to obtain or modify sensitive patient and financi...
Medhost Medhost Document Management System -
383
VMScore
CVE-2013-6289
Cross-site scripting (XSS) vulnerability in the Apache Solr for TYPO3 (solr) extension prior to 2.8.3 for TYPO3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Ingo Renner Apache Solr 2.8.1
Ingo Renner Apache Solr 2.8.0
Ingo Renner Apache Solr 1.0
Ingo Renner Apache Solr 2.2.0
Ingo Renner Apache Solr 2.1.0
Ingo Renner Apache Solr 2.2.2
Ingo Renner Apache Solr 2.2.1
Ingo Renner Apache Solr
Ingo Renner Apache Solr 1.3.1
Ingo Renner Apache Solr 1.3.0
NA
CVE-2022-41398
The optional Global Search feature for Sage 300 through version 2022 uses a set of hard-coded credentials for the accompanying Apache Solr instance. This issue could allow malicious users to login to the Solr dashboard with admin privileges and access sensitive information.
Sage Sage 300
187
VMScore
CVE-2018-20917
cPanel prior to 70.0.23 allows any user to disable Solr (SEC-371).
Cpanel Cpanel
668
VMScore
CVE-2019-14222
An issue exists in Alfresco Community Edition versions 6.0 and lower. An unauthenticated, remote attacker could authenticate to Alfresco's Solr Web Admin Interface. The vulnerability is due to the presence of a default private key that is present in all default installations...
Alfresco Alfresco
312
VMScore
CVE-2016-6353
Cloudera Search in CDH prior to 5.7.0 allows unauthorized document access because Solr Queries by document id can bypass Sentry document-level security via the RealTimeGetHandler.
Cloudera Cdh
NA
CVE-2023-46819
Missing Authentication in Apache Software Foundation Apache OFBiz when using the Solr plugin. This issue affects Apache OFBiz: prior to 18.12.09. Users are recommended to upgrade to version 18.12.09
Apache Ofbiz
NA
CVE-2022-47501
Arbitrary file reading vulnerability in Apache Software Foundation Apache OFBiz when using the Solr plugin. This is a pre-authentication attack. This issue affects Apache OFBiz: prior to 18.12.07.
Apache Ofbiz
294
VMScore
CVE-2020-4307
IBM Security Guardium 11.1 could allow an attacker on the same network to gain access to the Solr dashboard and cause a denial of service attack. IBM X-Force ID: 176997.
Ibm Security Guardium 11.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »