Multiple XSS issues exist in Sonatype Nexus Repository Manager 3 prior to 3.33.0. An authenticated attacker with the ability to add HTML files to a repository could redirect users to Nexus Repository Manager’s pages with code modifications.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sonatype nexus repository manager |