Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-6555

Malware in sbrugna...

9CVSS7.5AI score0.18396EPSS
Exploits5References3
Gitee
Gitee
added 2021/01/24 10:47 a.m.4 views

Exploit for OS Command Injection in Sonatype Nexus_Repository_Manager

CVE-2019-5475 CVE-2019-5475 与 CVE-2019-15588 靶场: RCE 命令注入漏洞 ------ 0x00 背景 CVE-2019-5475 是 Nexus 关于内置插件 Yum Repository 的 RCE 命令注入漏洞,其最早被披露于 hackerone,但因官方第一次修复不完整,故又衍生出了 CVE-2019-15588 漏洞。 这两个漏洞都需要以 admin 身份登录后才可以利用,但是 nexus 默认管理员密码 admin123 经常被忽略修改,很容易就被利用了。 0x10 靶场环境 0x20 目录结构 CVE-2019-5475 ├──...

9CVSS7.9AI score0.18396EPSS
Exploits5
GithubExploit
GithubExploit
added 2020/12/16 2:3 p.m.236 views

Exploit for OS Command Injection in Sonatype Nexus_Repository_Manager

CVE-2019-5475 CVE-2019-5475 and CVE-2019-15588: RCE command...

9CVSS7.3AI score0.18396EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2019/11/08 12:0 a.m.54 views

FreeBSD : nexus2-oss -- Multiple vulerabilities (b2f9573a-008c-11ea-9801-10c37b4ac2ea)

Sonatype reports : Several RCE vulnerabilities have been found and corrected in 2.14.15 : CVE-2019-16530: An attacker with elevated privileges can upload a specially crafted file. That file can contain commands that will be executed on the system, with the same privileges as the user running the...

9CVSS7.5AI score0.18396EPSS
Exploits5References4
GithubExploit
GithubExploit
added 2019/09/25 4:22 p.m.40 views

Exploit for OS Command Injection in Sonatype Nexus_Repository_Manager

CVE-2019-5475-Nexus-Repository-Manager- Payload PUT /...

9CVSS7.7AI score0.18396EPSS
Exploits5
Hacker One
Hacker One
added 2019/09/05 3:25 a.m.95 views

Central Security Project: OS Command Injection in Nexus Repository Manager 2.x(bypass CVE-2019-5475)

OS Command Injection in Nexus Repository Manager 2.xbypass CVE-2019-5475 Maven artifact groupId: org.sonatype.nexus.plugins artifactId: nexus-yum-repository-plugin version: 2.14.14-01 Vulnerability Vulnerability Description The Nexus Yum Repository Plugin is vulnerable to Remote Code Execution. A...

9CVSS0.4AI score0.18396EPSS
Exploits5
OSV
OSV
added 2019/09/03 8:15 p.m.21 views

CVE-2019-5475

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...

8.8CVSS7.2AI score
Exploits0References1
Rows per page
Query Builder