Multiple cross-site scripting (XSS) vulnerabilities in the Admin UI in Apache Solr before 5.1 allow remote attackers to inject arbitrary web script or HTML via crafted fields that are mishandled during the rendering of the (1) Analysis page, related to webapp/web/js/scripts/analysis.js or (2) Schema-Browser page, related to webapp/web/js/scripts/schema-browser.js.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2016-02-15T02:00:00

Updated: 2024-08-06T08:29:22.098Z

Reserved: 2016-01-29T00:00:00

Link: CVE-2015-8795

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2016-02-15T02:59:15.013

Modified: 2024-11-21T02:39:12.883

Link: CVE-2015-8795

cve-icon Redhat

No data.