3 matches found
CVE-2018-16621
Sonatype Nexus Repository Manager before 3.14 allows Java Expression Language Injection...
CVE-2018-16621
Sonatype Nexus Repository Manager before 3.14 allows Java Expression Language Injection...
CVE-2018-16621
CVE-2018-16621 affects Sonatype Nexus Repository Manager prior to version 3.14, where Java Expression Language Injection is possible. The root cause is insecure EL handling in the repository manager, enabling injection that can lead to server-side behavior manipulation. In the public records, the...