Apache solr service exposed

Description
  • Apache Solr is the popular, blazing fast open source enterprise search platform from the Apache Lucene project. Its major features include powerful full-text search, hit highlighting, faceted search, dynamic clustering, database integration, rich document (e.g., Word, PDF) handling, and geo-spatial search. Solr is highly scalable, providing distributed search and index replication, and it powers the search and navigation features of many of the world's largest internet sites.<br/><br/> Acunetix discovered that is possible to access the Solr Admin page. This page should not be accessible on a production website as it may give an attacker access to sensitive information about the affected system.
Remediation
  • Disable external access to the Apache Solr service.
References