5 matches found
EUVD-2026-37783
Sonatype Nexus Repository Manager before 3.93.0 contains an authorization vulnerability in the proxy repository configuration that allows a delegated repository administrator to disclose stored upstream proxy credentials...
CVE-2026-0600 Nexus Repository 3 - Server-Side Request Forgery in Proxy Repository Configuration
Server-Side Request Forgery SSRF vulnerability in Sonatype Nexus Repository 3 versions 3.0.0 and later allows authenticated administrators to configure proxy repositories with URLs that can access unintended network destinations, potentially including cloud metadata services and internal network...
GitLab 16.6 < 17.9.7 / 17.10 < 17.10.5 / 17.11 < 17.11.1 (CVE-2025-2443)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Gitlab reports: Cross Site Scripting XSS in Maven Dependency Proxy through CSP directives Cross Site Scripting XSS in Maven dependency proxy through cache headers Network Error Logging NEL Header...
GHSA-FRVJ-CFQ4-3228
creationtimestamp| type| source ---|---|--- 2025-01-22 17:00:51+00:00| seen| https://github.blog/security/vulnerability-research/attacks-on-maven-proxy-repositories/...
CVE-2024-6915
creationtimestamp| type| source ---|---|--- 2024-08-05 23:06:44+00:00| seen| https://t.me/cvedetector/2490 2024-08-06 10:50:29+00:00| published-proof-of-concept| https://t.me/HackingInsights/8806 2025-01-22 17:00:51+00:00| seen|...