Description
An important vulnerability (CVE-2010-0185) has been identified in ColdFusion 9.0, which could allow access to collections created by the Solr Service to be accessed from any external machine using a specific URL. By accessing the ColdFusion Solr collections, a user could search and index the information contained in the collections. Adobe has provided a solution to the reported vulnerability. It is recommended that users update their product installations using the instructions provided below.
Remediation
Disable external access to the Solr collections.
References
Related Vulnerabilities
WordPress Plugin Video.js-HTML5 Video Player for Wordpress Cross-Site Scripting (4.5.0)
WordPress Plugin WP-BlipBot Cross-Site Scripting (3.0.9)
MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-2079)
WordPress Plugin Google Analytics by BestWebSoft Cross-Site Scripting (1.7.0)
Joomla Improper Input Validation Vulnerability (CVE-2015-8564)