1135

2 exploits Active since Aug 2019

CVE-2019-0193 NOMISEC HIGH WORKING POC

Apache Solr < 7.7.3 - Code Injection

In Apache Solr, the DataImportHandler, an optional but popular module to pull in data from databases and other sources, has a feature in which the whole DIH configuration can come from a request's "dataConfig" parameter. The debug mode of the DIH admin screen uses this to allow convenient debugging / development of a DIH config. Since a DIH config can contain scripts, this parameter is a security risk. Starting with version 8.2.0 of Solr, use of this parameter requires setting the Java System property "enable.dih.dataConfigParam" to true.

66 stars

CVSS 7.2

View Code

CVE-2020-11975 NOMISEC CRITICAL WORKING POC

Apache Unomi - RCE

Apache Unomi allows conditions to use OGNL scripting which offers the possibility to call static Java classes from the JDK that could execute code with the permission level of the running Java process.

6 stars

CVSS 9.8

View Code