Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

Nuclei
Nucleiadded 8 hours ago84 views

Apache OFBiz < 18.12.07 - Local File Inclusion

Arbitrary file reading vulnerability in Apache Software Foundation Apache OFBiz when using the Solr plugin. This is a pre-authentication attack. This issue affects Apache OFBiz: before 18.12.07. id: CVE-2022-47501 info: name: Apache OFBiz 18.12.07 - Local File Inclusion author: your3cho severity:...

7.5CVSS7.1AI score0.86322EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-50985

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00299EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEVadded 2025/06/07 12:0 a.m.2 views

VulnCheck KEV: CVE-2022-47501

Arbitrary file reading vulnerability in Apache Software Foundation Apache OFBiz when using the Solr plugin. This is a pre-authentication attack. This issue affects Apache OFBiz: before 18.12.07...

7.5CVSS5.8AI score0.86322EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 4:52 a.m.5 views

CVE-2023-46819

Missing Authentication in Apache Software Foundation Apache OFBiz when using the Solr plugin. This issue affects Apache OFBiz: before 18.12.09. Users are recommended to upgrade to version 18.12.09...

5.3CVSS6.9AI score0.00299EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/02/14 9:41 a.m.7 views

CVE-2022-47501

Arbitrary file reading vulnerability in Apache Software Foundation Apache OFBiz when using the Solr plugin. This is a pre-authentication attack. This issue affects Apache OFBiz: before 18.12.07...

7.5CVSS6.7AI score0.86322EPSS
Exploits0
OSV
OSVadded 2023/11/07 11:15 a.m.1 views

CVE-2023-46819

Missing Authentication in Apache Software Foundation Apache OFBiz when using the Solr plugin. This issue affects Apache OFBiz: before 18.12.09. Users are recommended to upgrade to version 18.12.09...

5.3CVSS5.7AI score0.00299EPSS
Exploits0References4
NVD
NVDadded 2023/11/07 11:15 a.m.10 views

CVE-2023-46819

Missing Authentication in Apache Software Foundation Apache OFBiz when using the Solr plugin. This issue affects Apache OFBiz: before 18.12.09. Users are recommended to upgrade to version 18.12.09...

5.3CVSS0.00299EPSS
Exploits0References4
Prion
Prionadded 2023/11/07 11:15 a.m.21 views

Authentication flaw

Missing Authentication in Apache Software Foundation Apache OFBiz when using the Solr plugin. This issue affects Apache OFBiz: before 18.12.09. Users are recommended to upgrade to version 18.12.09...

5CVSS7.2AI score0.00299EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2023/11/07 11:2 a.m.14 views

CVE-2023-46819 Apache OFBiz: Execution of Solr plugin queries without authentication

Missing Authentication in Apache Software Foundation Apache OFBiz when using the Solr plugin. This issue affects Apache OFBiz: before 18.12.09. Users are recommended to upgrade to version 18.12.09...

7.2AI score0.00299EPSS
Exploits0References4
CVE
CVEadded 2023/11/07 11:2 a.m.55 views

CVE-2023-46819

Apache OFBiz contains a Missing Authentication flaw in the Solr plugin (CVE-2023-46819). Affected versions are before 18.12.09. The root cause is unauthorized access to Solr plugin queries, enabling potential modification/exfiltration of protected data. The recommended remediation is upgrading to...

5.3CVSS5.3AI score0.00299EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2023/11/07 11:2 a.m.14 views

CVE-2023-46819 Apache OFBiz: Execution of Solr plugin queries without authentication

Missing Authentication in Apache Software Foundation Apache OFBiz when using the Solr plugin. This issue affects Apache OFBiz: before 18.12.09. Users are recommended to upgrade to version 18.12.09...

5.7AI score0.00299EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2023/11/07 12:0 a.m.3 views

PT-2023-8562 · Apache · Apache Ofbiz

Name of the Vulnerable Software and Affected Versions: Apache OFBiz versions prior to 18.12.09 Description: The issue is related to missing authentication in the Solr plugin of Apache OFBiz, allowing a remote attacker to modify protected information. It is estimated that around 1,891 devices are...

5.3CVSS7.4AI score0.00299EPSS
Exploits0References7
OSV
OSVadded 2023/04/14 4:15 p.m.1 views

CVE-2022-47501

Arbitrary file reading vulnerability in Apache Software Foundation Apache OFBiz when using the Solr plugin. This is a pre-authentication attack. This issue affects Apache OFBiz: before 18.12.07...

7.5CVSS5.8AI score0.86322EPSS
Exploits0References7
NVD
NVDadded 2023/04/14 4:15 p.m.11 views

CVE-2022-47501

Arbitrary file reading vulnerability in Apache Software Foundation Apache OFBiz when using the Solr plugin. This is a pre-authentication attack. This issue affects Apache OFBiz: before 18.12.07...

7.5CVSS7.5AI score0.86322EPSS
Exploits0References7
Prion
Prionadded 2023/04/14 4:15 p.m.25 views

Design/Logic Flaw

Arbitrary file reading vulnerability in Apache Software Foundation Apache OFBiz when using the Solr plugin. This is a pre-authentication attack. This issue affects Apache OFBiz: before 18.12.07...

5CVSS7.5AI score0.86322EPSS
Exploits0References7Affected Software1
CVE
CVEadded 2023/04/14 3:1 p.m.100 views

CVE-2022-47501

CVE-2022-47501 affects Apache OFBiz versions before 18.12.07. It is an arbitrary/ local file reading vulnerability via the Solr plugin, described as a pre-authentication (unauthenticated) attack. The issue allows reading arbitrary server filesystem files through the Solr plugin debug endpoint, po...

7.5CVSS7.5AI score0.86322EPSS
Exploits0References7Affected Software1
Vulnrichment
Vulnrichmentadded 2023/04/14 3:1 p.m.12 views

CVE-2022-47501 Apache OFBiz: Arbitrary file reading vulnerability

Arbitrary file reading vulnerability in Apache Software Foundation Apache OFBiz when using the Solr plugin. This is a pre-authentication attack. This issue affects Apache OFBiz: before 18.12.07...

7.5AI score0.86322EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2023/04/14 12:0 a.m.2 views

PT-2023-15381 · Apache · Apache Ofbiz

Name of the Vulnerable Software and Affected Versions: Apache OFBiz versions prior to 18.12.07 Description: The issue is an arbitrary file reading vulnerability in Apache OFBiz when using the Solr plugin. This is a pre-authentication attack, meaning it can be exploited without needing to...

7.5CVSS7.2AI score0.86322EPSS
Exploits0References11
Positive Technologies
Positive Technologiesadded 2022/12/28 12:0 a.m.2 views

PT-2022-8065 · Unknown · Farcry Solr Pro Plugin

Name of the Vulnerable Software and Affected Versions: FarCry Solr Pro Plugin versions up to 1.5.x Description: A vulnerability was found in the FarCry Solr Pro Plugin, affecting an unknown functionality of the file packages/forms/solrProSearch.cfc of the component Search Handler. The manipulatio...

6.1CVSS4.2AI score0.00285EPSS
Exploits1References8
ATTACKERKB
ATTACKERKBadded 2022/09/02 7:15 a.m.2 views

CVE-2022-29063

The Solr plugin of Apache OFBiz is configured by default to automatically make a RMI request on localhost, port 1099. In version 18.12.05 and earlier, by hosting a malicious RMI server on localhost, an attacker may exploit this behavior, at server start-up or on a server restart, in order to run...

9.8CVSS7.3AI score0.20826EPSS
Exploits0References3
Rows per page
Query Builder