Multiple cross-site scripting (XSS) vulnerabilities in the Admin UI in Apache Solr before 5.1 allow remote attackers to inject arbitrary web script or HTML via crafted fields that are mishandled during the rendering of the (1) Analysis page, related to webapp/web/js/scripts/analysis.js or (2) Schema-Browser page, related to webapp/web/js/scripts/schema-browser.js.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://issues.apache.org/jira/browse/SOLR-7346 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2016-02-15T02:00:00
Updated: 2024-08-06T08:29:22.098Z
Reserved: 2016-01-29T00:00:00
Link: CVE-2015-8795
Vulnrichment
No data.
NVD
Status : Modified
Published: 2016-02-15T02:59:15.013
Modified: 2024-11-21T02:39:12.883
Link: CVE-2015-8795
Redhat
No data.