Lucene search
GoogleOSV:GHSA-4FXW-G29W-R8MXHistoryMay 17, 2022 - 2:24 a.m.
Apache Solr Cross-site scripting Vulnerability
2022-05-1702:24:43
Google
osv.dev
9
0.037 Low
EPSS
Percentile
91.8%
Cross-site scripting (XSS) vulnerability in webapp/web/js/scripts/schema-browser.js in the Admin UI in Apache Solr before 5.3 allows remote attackers to inject arbitrary web script or HTML via a crafted schema-browse URL.
References
github.com/apache/lucene/commit/dc2f2295e0a6c6574f033f295dc0c9adb7660df9
github.com/apache/solr
github.com/apache/solr/commit/dc2f2295e0a6c6574f033f295dc0c9adb7660df9
issues.apache.org/jira/browse/SOLR-7920
nvd.nist.gov/vuln/detail/CVE-2015-8796
web.archive.org/web/20200227160406/www.securityfocus.com/bid/85205
Related
github
github
Apache Solr Cross-site scripting Vulnerability
2022-05-17 02:24:43
prion
prion
Cross site scripting
2016-02-15 02:59:00
ubuntucve
ubuntucve
CVE-2015-8796
2016-02-15 00:00:00
cve
cve
CVE-2015-8796
2016-02-15 02:59:16
cvelist
cvelist
CVE-2015-8796
2016-02-15 02:00:00
nvd
nvd
CVE-2015-8796
2016-02-15 02:59:16
debiancve
debiancve
CVE-2015-8796
2016-02-15 02:59:16
openvas
openvas
Apache Solr Multiple XSS Vulnerabilities (SOLR-7920, SOLR-7949)
2016-03-01 00:00:00