Re: XSS in Solr admin interface
On 19-Jun-08, at 11:17 PM, Nicob wrote: Le jeudi 19 juin 2008 à 19:21 -0700, Mike Klaas a écrit : Fixed in r669766. I checked the patch and it's correctly patching this XSS. Thanks to the dev team ! Thanks for the report! -Mike
Re: XSS in Solr admin interface
Le jeudi 19 juin 2008 à 19:21 -0700, Mike Klaas a écrit : > Fixed in r669766. I checked the patch and it's correctly patching this XSS. Thanks to the dev team ! Regards, Nicob
Re: XSS in Solr admin interface
On 19-Jun-08, at 5:47 PM, Yonik Seeley wrote: On Thu, Jun 19, 2008 at 7:42 PM, Nicob <[EMAIL PROTECTED]> wrote: while testing the Solr search engine, I found a XSS vulnerability in its administration interface. I wrote to [EMAIL PROTECTED], but I wonder if this list could be a better place to find a security contact of the Solr project. This is definitely the right list. Is this vulnerability in the current dev version of solr? Fixed in r669766. -Mike
Re: XSS in Solr admin interface
On Thu, Jun 19, 2008 at 7:42 PM, Nicob <[EMAIL PROTECTED]> wrote: > while testing the Solr search engine, I found a XSS vulnerability in its > administration interface. I wrote to [EMAIL PROTECTED], but I wonder > if this list could be a better place to find a security contact of the > Solr project. This is definitely the right list. Is this vulnerability in the current dev version of solr? -Yonik
