Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/05/27 9:0 p.m.15 views

CVE-2026-45083 Goobi viewer: Unauthenticated Solr Streaming Expression Proxy

The Goobi viewer is a web application that allows digitised material to be displayed in a web browser. From 4.8.0 to before 26.04.1, the Goobi viewer REST endpoint POST /api/v1/index/stream accepted an arbitrary Solr streaming expression from unauthenticated network clients and forwarded it to th...

9.8CVSS5.9AI score0.0041EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/14 12:0 a.m.11 views

SiYuan 授权问题漏洞

SiYuan is an open-source personal knowledge management system developed by SiYuan. Versions of SiYuan prior to 3.7.0 had an authorization issue vulnerability. This vulnerability stemmed from the lack of administrator and read-only permission checks for 8 API endpoints, which could lead to...

7.2CVSS5.8AI score0.00207EPSS
Exploits0References2
OSV
OSV
added 2026/05/13 3:33 p.m.15 views

GHSA-2RGP-F66F-4499 Goobi viewer - Core: Unauthenticated Solr Streaming Expression Proxy

Summary The Goobi viewer REST endpoint POST /api/v1/index/stream accepted an arbitrary Solr streaming expression from unauthenticated network clients and forwarded it to the backend Solr server without restriction. An attacker could read the complete Solr index and, in default Solr deployments,...

9.8CVSS6AI score0.0041EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2008/11/03 12:0 a.m.24 views

Fedora 9 : phpMyAdmin-3.0.1.1-1.fc9 (2008-9316)

This update by upstream to phpMyAdmin 3.0.1.1 solves CVE-2008-4775, a XSS issue in pmdpdf.php via db parameter when registerglobals is enabled. - GUI SQL error after sorting a subset - lang Catalan update - lang Russian update - import Temporary uploaded file not deleted - auth Cannot create...

2.6CVSS5.5AI score0.0606EPSS
Exploits0References3
Rows per page
Query Builder