412 matches found
CVE-2022-27907
Sonatype Nexus Repository Manager 3.x before 3.38.0 allows SSRF...
Server side request forgery (ssrf)
Sonatype Nexus Repository Manager 3.x before 3.38.0 allows SSRF...
CVE-2022-27907
CVE-2022-27907 affects Sonatype Nexus Repository Manager 3.x before 3.38.0, with an SSRF vulnerability. Connected documents describe a code issue that forces the server to send a query request, enabling SSRF. Exploitation details are not provided in the sources; no in‑the‑wild exploit data is sta...
CVE-2022-27907
Sonatype Nexus Repository Manager 3.x before 3.38.0 allows SSRF...
CVE-2021-43961
Sonatype Nexus Repository Manager 3.36.0 allows HTML Injection...
CVE-2021-43961
Sonatype Nexus Repository Manager 3.36.0 allows HTML Injection...
Design/Logic Flaw
Sonatype Nexus Repository Manager 3.36.0 allows HTML Injection...
CVE-2021-43961
CVE-2021-43961 affects Sonatype Nexus Repository Manager 3.36.0 (NXS/NXRM). The connected sources specify a HTML Injection vulnerability in this version. No exploit vectors, exploit status, or remediation details are provided in the available documents. The reports consistently describe the issue...
CVE-2021-43961
Sonatype Nexus Repository Manager 3.36.0 allows HTML Injection...
Sonatype Nexus Repository Manager 跨站脚本漏洞
Sonatype Nexus Repository Manager NXRM is a repository manager from Sonatype, Inc. that is used to manage, store, and distribute software, among other things. A cross-site scripting vulnerability exists in Sonatype Nexus Repository Manager 3.x through 3.37.0. A remote attacker sending a specially...
Sonatype Nexus Repository Manager Incorrect Access Control Vulnerability
Sonatype Nexus Repository Manager before 3.15.0 has an incorrect access control vulnerability. Exploitation allows for remote code execution...
The vulnerability of Sonatype Nexus Repository Manager, related to improper code generation management, allows a perpetrator to execute arbitrary code.
The vulnerability of Sonatype Nexus Repository Manager is related to improper code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted request remotely...
CVE-2021-43293
Sonatype Nexus Repository Manager 3.x before 3.36.0 allows a remote authenticated attacker to potentially perform network enumeration via Server Side Request Forgery SSRF...
CVE-2021-43293
Sonatype Nexus Repository Manager 3.x before 3.36.0 allows a remote authenticated attacker to potentially perform network enumeration via Server Side Request Forgery SSRF...
Server side request forgery (ssrf)
Sonatype Nexus Repository Manager 3.x before 3.36.0 allows a remote authenticated attacker to potentially perform network enumeration via Server Side Request Forgery SSRF...
Sonatype Nexus Repository 代码问题漏洞
Sonatype Nexus Repository is a repository manager from Sonatype, Inc. that is used for managing, storing, and distributing software, among other things. A security vulnerability exists in Sonatype Nexus Repository 3, which stems from a lack of validation and filtering of user-submitted input on t...
Sonatype Nexus Repository Remote Code Execution Vulnerability
Sonatype Nexus Repository contains an unspecified vulnerability that allows for remote code execution...
CVE-2021-42568
Sonatype Nexus Repository Manager 3.x through 3.35.0 allows attackers to access the SSL Certificates Loading function via a low-privileged account...
CVE-2021-42568
Sonatype Nexus Repository Manager 3.x through 3.35.0 allows attackers to access the SSL Certificates Loading function via a low-privileged account...
CVE-2021-42568
CVE-2021-42568 affects Sonatype Nexus Repository Manager 3.x up to 3.35.0. The vulnerability arises from incorrect access control that allows a low-privileged account to access the SSL Certificates Loading function, potentially exposing sensitive certificate-related data. The documented impact is...