Lucene search
PRIOn knowledge basePRION:CVE-2013-6407HistoryDec 07, 2013 - 8:55 p.m.
Xxe
2013-12-0720:55:00
PRIOn knowledge base
www.prio-n.com
8
The UpdateRequestHandler for XML in Apache Solr before 4.1 allows remote attackers to have an unspecified impact via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
References
rhn.redhat.com/errata/RHSA-2013-1844.html
rhn.redhat.com/errata/RHSA-2014-0029.html
secunia.com/advisories/55542
secunia.com/advisories/59372
svn.apache.org/viewvc/lucene/dev/branches/branch_4x/solr/CHANGES.txt?view=markup
www.openwall.com/lists/oss-security/2013/11/29/2
issues.apache.org/jira/browse/SOLR-3895
Related
nvd
nvd
osv
osv
Apache Solr UpdateRequestHandler for XML resolves XML External Entities
2022-05-17 04:39:49
Improper Restriction of XML External Entity Reference in Apache Solr
2022-05-17 04:50:16
XML Injection in Apache Solr
2022-05-17 04:39:49
debiancve
debiancve
cve
cve
github
github
Apache Solr UpdateRequestHandler for XML resolves XML External Entities
2022-05-17 04:39:49
XML Injection in Apache Solr
2022-05-17 04:39:49
Improper Restriction of XML External Entity Reference in Apache Solr
2022-05-17 04:50:16
ubuntucve
ubuntucve
cvelist
cvelist
nessus
nessus
Apache Solr < 4.1.0 Multiple XML External Entity Injections
2014-01-07 00:00:00
Apache Solr < 4.3.1 XML External Entity Injection
2014-01-07 00:00:00
Debian DSA-2963-1 : lucene-solr - security update
2014-06-18 00:00:00
ibm
ibm
openvas
openvas
debian
debian
[SECURITY] [DSA 2963-1] lucene-solr security update
2014-06-17 19:32:03
securityvulns
securityvulns
Vulnerabilities in Apache Solr < 4.6.0
2014-01-09 00:00:00
redhat
redhat
(RHSA-2014:0029) Important: Red Hat JBoss Data Grid 6.2.0 update
2014-01-15 17:38:16