Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the org.apache.solr:solr-core package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable versions	Snyk patch	Published
H Information Exposure	[8.1.1,8.3.0)	Not available	03 Dec, 2019
H Improper Authentication	[,8.2.0)	Not available	26 Nov, 2019
M Server-side Request Forgery (SSRF)	[1.3.0,7.6.0)	Not available	10 Mar, 2019
H Deserialization of Untrusted Data	[5.0.0,7.0.0)	Not available	07 Mar, 2019
M XML External Entity (XXE) Injection	[,6.6.5),[7.0.0,7.4.0)	Not available	19 Jul, 2018
M XML External Entity (XXE) Injection	[6.0.0,6.6.4),[7.0.0,7.3.1)	Not available	22 May, 2018
H XML External Entity (XXE) Injection	[5.5.0,5.5.5),[6.0.0,6.6.2),[7.0.0,7.1.0)	Not available	04 Dec, 2017
H Privilege Escalation	[6.2.0,6.6.1)	Not available	05 Nov, 2017
H Information Exposure	[5.3.0,5.5.5),[6.0.0,6.6.0)	Not available	31 Aug, 2017
H Directory Traversal	[1.4.0,5.5.4),[6.0.0,6.4.1)	Not available	21 May, 2017
M XML External Entity (XXE) Injection	[,4.3.1)	Not available	25 Dec, 2016
M XML External Entity (XXE) Injection	[3.6.1,4.1.0)	Not available	25 Dec, 2016
M Path Traversal	[,4.6.0)	Not available	25 Dec, 2016
H XML External Entity (XXE) Injection	[,4.1.0)	Not available	17 Jun, 2014
M Directory Traversal	[,4.6.0)	Not available	27 Nov, 2013