1
Candidate: CVE-2014-3628
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3628
5
http://secunia.com/advisories/62024
6
http://mail-archives.us.apache.org/mod_mbox/www-announce/201412.mbox/%3C54A1A7C7.2070804@apache.org%3E
7
https://issues.apache.org/jira/browse/SOLR-6738
9
Cross-site scripting (XSS) vulnerability in the Admin UI Plugin / Stats
10
page in Apache Solr 4.x before 4.10.3 allows remote attackers to inject
11
arbitrary web script or HTML via the fieldvaluecache object.
14
sbeattie> only affected solr 4.x releases
21
upstream_lucene-solr: needs-triage
22
lucid_lucene-solr: DNE
23
precise_lucene-solr: DNE
24
precise/esm_lucene-solr: DNE
25
trusty_lucene-solr: not-affected (solr 4.x only)
26
utopic_lucene-solr: ignored (reached end-of-life)
27
vivid_lucene-solr: ignored (reached end-of-life)
28
vivid/stable-phone-overlay_lucene-solr: DNE
29
vivid/ubuntu-core_lucene-solr: DNE
30
wily_lucene-solr: ignored (reached end-of-life)
31
xenial_lucene-solr: not-affected (solr 4.x only)
32
yakkety_lucene-solr: ignored (reached end-of-life)
33
zesty_lucene-solr: ignored (reached end-of-life)
34
artful_lucene-solr: not-affected (solr 4.x only)
35
devel_lucene-solr: not-affected (solr 4.x only)