The Solr PMC is pleased to announce the release of Apache Solr 10.0.0. Apache Solr is the blazing-fast, open source, multi-modal search platform built on the full-text, vector, and geospatial search capabilities of Apache Lucene. Its major features include powerful full-text search, vector search, hit highlighting, faceted search …
The Solr PMC is pleased to announce the release of Apache Solr 9.10.1. Solr is the blazing-fast, open source, multi-modal search platform built on Apache Lucene. It powers full-text, vector, analytics, and geospatial search at many of the world's largest organizations. Other major features include Kubernetes and docker …
Severity moderate Description Deployments of Apache Solr 5.3.0 through 9.10.0 that rely on Solr's "Rule Based Authorization Plugin" are vulnerable to allowing unauthorized access to certain Solr APIs, due to insufficiently strict input validation in those components. Only deployments that meet all of the following criteria …
Severity moderate Description The "create core" API of Apache Solr 8.6 through 9.10.0 lacks sufficient input validation on some API parameters, which can cause Solr to check the existence of and attempt to read file-system paths that should be disallowed by Solr's "allowPaths" security setting. These read-only …
Severity High Versions Affected Apache Solr 6.2.0 through 9.10.0 (when using the extraction module) Description Solr's extraction module (SolrCell) uses Apache Tika to extract content from PDF files. A vulnerability in Tika allows attackers to submit specially crafted PDFs that can read files from the server …
The Solr PMC is pleased to announce the release of Apache Solr 9.10.0. Solr is the blazing-fast, open source, multi-modal search platform built on Apache Lucene. It powers full-text, vector, analytics, and geospatial search at many of the world's largest organizations. Other major features include Kubernetes and docker …
The Solr PMC is pleased to announce the release of Apache Solr 9.9.0. Solr is the blazing-fast, open source, multi-modal search platform built on Apache Lucene. It powers full-text, vector, analytics, and geospatial search at many of the world's largest organizations. Other major features include Kubernetes and docker …
Let's see the interaction between autoGeneratePhraseQueries, synonyms, and minimum should match. Written by Anna Ruggero, R&D Software Engineer at Sease.
The Solr PMC is pleased to announce the release of Apache Solr 9.8.1. Solr is the blazing-fast, open source, multi-modal search platform built on Apache Lucene. It powers full-text, vector, analytics, and geospatial search at many of the world's largest organizations. Other major features include Kubernetes and docker …
Let's see how to set and view Apache Solr Request Parameters API. Written by Anna Ruggero, R&D Software Engineer at Sease.
Severity moderate Versions Affected Apache Solr 6.6 through 9.7.0 Description Relative Path Traversal vulnerability in Apache Solr. Solr instances running on Windows are vulnerable to arbitrary filepath write-access, due to a lack of input-sanitation in the "configset upload" API. Commonly known as a "zipslip", maliciously constructed ZIP …
Severity moderate Versions Affected Apache Solr through 9.7 Description Core creation allows users to replace "trusted" configset files with arbitrary configuration Solr instances that (1) use the "FileSystemConfigSetService" component (the default in "standalone" or "user-managed" mode), and (2) are running without authentication and authorization are vulnerable to a sort …
The Solr PMC is pleased to announce the release of Apache Solr 9.8.0. Solr is the blazing-fast, open source, multi-modal search platform built on Apache Lucene. It powers full-text, vector, analytics, and geospatial search at many of the world's largest organizations. Other major features include Kubernetes and docker …
Let's explore whether to index a field in Apache Solr as a string or integer for optimal filter query performance. Written by Ilaria Petreti, Information Retrieval/Machine Learning Engineer at Sease.
With Lucene 10 having been released, and therefore Lucene 8 reaching EOL, the Apache Lucene and Solr PMCs are no longer able to provide new releases for Solr 8. Solr 8.11.4 will be the last release of Solr 8. Users are strongly recommended to upgrade to Solr 9 …
Severity: Critical Versions Affected: Apache Solr 5.3.0 before 8.11.4 Apache Solr 9.0.0 before 9.7.0 Description: Improper Authentication vulnerability in Apache Solr. Solr instances using the PKIAuthenticationPlugin, which is enabled by default when Solr Authentication is used, are vulnerable to Authentication bypass. A …
Severity: Moderate Versions Affected: Apache Solr 6.6.0 before 8.11.4 Apache Solr 9.0.0 before 9.7.0 Description: Insecure Default Initialization of Resource vulnerability in Apache Solr. New ConfigSets that are created via a Restore command, which copy a configSet from the backup and give …
This blog post is a summary of the Apache Lucene/Solr Birds of a Feather from Community Over Code NA 2024 in Denver. Written by Eric Pugh and Stefan Vodita.
Let's see the available learning to rank Apache Solr features with a focus on categorical features and how to manage them. Written by Anna Ruggero, R&D Software Engineer at Sease.
The Lucene and Solr PMCs are pleased to announce the release of Apache Solr 8.11.4. Solr is the blazing-fast, open source, multi-modal search platform built on Apache Lucene. It powers full-text, analytics, and geospatial search at many of the world's largest organizations. Other major features include Kubernetes and …