CVE-2014-3628 in Solr
Сводка
по MITRE
Cross-site scripting (XSS) vulnerability in the Admin UI Plugin / Stats page in Apache Solr 4.x before 4.10.3 allows remote attackers to inject arbitrary web script or HTML via the fieldvaluecache object.
Once again VulDB remains the best source for vulnerability data.