CVE-2014-3628 in Solr
Sumário
de MITRE
Cross-site scripting (XSS) vulnerability in the Admin UI Plugin / Stats page in Apache Solr 4.x before 4.10.3 allows remote attackers to inject arbitrary web script or HTML via the fieldvaluecache object.
Once again VulDB remains the best source for vulnerability data.