Lucene search
+L

8 matches found

nvd
nvd
added 2018/02/09 10:29 p.m.18 views

CVE-2018-5307

Multiple cross-site scripting XSS vulnerabilities in Sonatype Nexus Repository Manager aka NXRM 2.x before 2.14.6 allow remote attackers to inject arbitrary web script or HTML via 1 the repoId or 2 format parameter to service/siesta/healthcheck/healthCheckFileDetail/.../index.html; 3 the filename...

6.1CVSS6.1AI score0.01223EPSS
Exploits3References3
osv
osv
added 2018/02/09 10:29 p.m.31 views

CVE-2018-5306

Multiple cross-site scripting XSS vulnerabilities in Sonatype Nexus Repository Manager aka NXRM 3.x before 3.8 allow remote attackers to inject arbitrary web script or HTML via 1 the repoId or 2 format parameter to service/siesta/healthcheck/healthCheckFileDetail/.../index.html; 3 the filename in...

6.1CVSS6AI score0.01116EPSS
Exploits3References3
nvd
nvd
added 2018/02/09 10:29 p.m.29 views

CVE-2018-5306

Multiple cross-site scripting XSS vulnerabilities in Sonatype Nexus Repository Manager aka NXRM 3.x before 3.8 allow remote attackers to inject arbitrary web script or HTML via 1 the repoId or 2 format parameter to service/siesta/healthcheck/healthCheckFileDetail/.../index.html; 3 the filename in...

6.1CVSS6.1AI score0.01116EPSS
Exploits3References3
prion
prion
added 2018/02/09 10:29 p.m.24 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Sonatype Nexus Repository Manager aka NXRM 3.x before 3.8 allow remote attackers to inject arbitrary web script or HTML via 1 the repoId or 2 format parameter to service/siesta/healthcheck/healthCheckFileDetail/.../index.html; 3 the filename in...

4.3CVSS6AI score0.01116EPSS
Exploits3References3Affected Software1
prion
prion
added 2018/02/09 10:29 p.m.21 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Sonatype Nexus Repository Manager aka NXRM 2.x before 2.14.6 allow remote attackers to inject arbitrary web script or HTML via 1 the repoId or 2 format parameter to service/siesta/healthcheck/healthCheckFileDetail/.../index.html; 3 the filename...

4.3CVSS6AI score0.01223EPSS
Exploits3References3Affected Software1
cvelist
cvelist
added 2018/02/09 10:0 p.m.31 views

CVE-2018-5306

Multiple cross-site scripting XSS vulnerabilities in Sonatype Nexus Repository Manager aka NXRM 3.x before 3.8 allow remote attackers to inject arbitrary web script or HTML via 1 the repoId or 2 format parameter to service/siesta/healthcheck/healthCheckFileDetail/.../index.html; 3 the filename in...

6.1AI score0.01116EPSS
Exploits3References3
cvelist
cvelist
added 2018/02/09 10:0 p.m.23 views

CVE-2018-5307

Multiple cross-site scripting XSS vulnerabilities in Sonatype Nexus Repository Manager aka NXRM 2.x before 2.14.6 allow remote attackers to inject arbitrary web script or HTML via 1 the repoId or 2 format parameter to service/siesta/healthcheck/healthCheckFileDetail/.../index.html; 3 the filename...

6.1AI score0.01223EPSS
Exploits3References3
cve
cve
added 2018/02/09 10:0 p.m.53 views

CVE-2018-5307

Summary: CVE-2018-5307 covers multiple cross-site scripting (XSS) vulnerabilities in Sonatype Nexus Repository Manager (NXRM) 2.x prior to 2.14.6, with exploitation possible via several parameters/files (repoId, format parameter to healthCheckFileDetail, staging upload filename, username on user ...

6.1CVSS6AI score0.01223EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder