Description
Apache Solr is an open source enterprise search platform from the Apache Lucene project. Its major features include full-text search, hit highlighting, faceted search, dynamic clustering, and document parsing.
The web application does not URL encode the user input when making a HTTP request to the Apache Solr web interface. This allows an attacker to inject additional query parameters to the Apache Solr web interface.
Remediation
URL encode the user input when making a HTTP request to the Apache Solr web interface.
References
Related Vulnerabilities
Deserialization of Untrusted Data (Java JSON Deserialization) Jackson
Reverse proxy misrouting through HTTP/2 pseudo-headers (SSRF)
JavaMelody XML External Entity (XXE) vulnerability
Remote code execution of user-provided local names in Rails
Oracle Business Intelligence ReportTemplateService XXE (CVE-2021-2400)