Описание
Cross-site scripting (XSS) vulnerability in webapp/web/js/scripts/schema-browser.js in the Admin UI in Apache Solr before 5.3 allows remote attackers to inject arbitrary web script or HTML via a crafted schema-browse URL.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| lucene-solr | not-affected | package |
Примечания
https://issues.apache.org/jira/browse/SOLR-7920
EPSS
Процентиль: 85%
0.02552
Низкий
Связанные уязвимости
CVSS3: 6.1
ubuntu
почти 10 лет назад
Cross-site scripting (XSS) vulnerability in webapp/web/js/scripts/schema-browser.js in the Admin UI in Apache Solr before 5.3 allows remote attackers to inject arbitrary web script or HTML via a crafted schema-browse URL.
CVSS3: 6.1
nvd
почти 10 лет назад
Cross-site scripting (XSS) vulnerability in webapp/web/js/scripts/schema-browser.js in the Admin UI in Apache Solr before 5.3 allows remote attackers to inject arbitrary web script or HTML via a crafted schema-browse URL.
EPSS
Процентиль: 85%
0.02552
Низкий