CVE-2017-12629 critical 9.8
9.8
9y ago
Remote code execution occurs in Apache Solr before 7.1 with Apache Lucene before 7.1 by exploiting XXE in conjunction with use of a Config API add-listener command to reach the RunExecutableListener …
debian ubuntu redhat java +1
CVE-2013-6408 medium —
6.4
13y ago
XML Injection in Apache Solr
debian java apache
CVE-2013-6407 medium —
6.4
13y ago
Apache Solr UpdateRequestHandler for XML resolves XML External Entities
debian java apache
CVE-2015-8797 medium 6.1
6.1
10y ago
Cross-site scripting (XSS) vulnerability in webapp/web/js/scripts/plugins.js in the stats page in the Admin UI in Apache Solr before 5.3.1 allows remote attackers to inject arbitrary web script or HT…
debian java apache
CVE-2015-8795 medium 6.1
6.1
10y ago
Multiple cross-site scripting (XSS) vulnerabilities in the Admin UI in Apache Solr before 5.1 allow remote attackers to inject arbitrary web script or HTML via crafted fields that are mishandled duri…
debian java apache
CVE-2021-29262 medium —
5.5
5y ago
Improper permission handling in Apache Solr
arch debian java
CVE-2013-6397 medium —
4.3
13y ago
Improper Limitation of a Pathname to a Restricted Directory in Apache Solr
debian java apache
CVE-2019-0193 unknown —
1.5
7y ago
XML External Entity (XXE) Injection in Apache Solr
debian java
CVE-2025-24814 unknown —
—
1y ago
Apache Solr vulnerable to Execution with Unnecessary Privileges
debian java
CVE-2024-52012 unknown —
—
1y ago
Apache Solr Relative Path Traversal vulnerability
debian java
CVE-2023-50291 unknown —
—
2y ago
Apache Solr can leak certain passwords due to System Property redaction logic inconsistencies
debian java
CVE-2023-50386 unknown —
—
2y ago
Apache Solr: Backup/Restore APIs allow for deployment of executables in malicious ConfigSets
debian java
CVE-2023-50292 unknown —
—
2y ago
Apache Solr Schema Designer blindly "trusts" all configsets
debian java
CVE-2023-50290 unknown —
—
2y ago
Apache Solr allows read access to host environmet variables
debian java
CVE-2019-12401 unknown —
—
4y ago
Apache Solr vulnerable to XML Bomb
debian java
CVE-2020-13957 unknown —
—
4y ago
Incorrect Authorization in Apache Solr
debian java
CVE-2018-11802 unknown —
—
4y ago
Incorrect Authorization in Apache Solr
debian java
CVE-2018-1308 unknown —
—
8y ago
There is a XML external entity expansion (XXE) vulnerability in Apache Solr
debian java
CVE-2018-8026 unknown —
—
8y ago
XML external entity expansion in org.apache.solr:solr-core
debian java