It has been discovered that the extension "Apache Solr for TYPO3" (solr) is vulnerable to Cross-Site Scripting and Insecure Unserialize.

More... (http://typo3.org/news/article/cross-site-scripting-vulnerability-in-extension-apache-solr-for-typo3-solr/)