Описание
Sonatype Nexus Repository Manager versions 3.x before 3.12.0 has XSS in multiple areas in the Administration UI.
Sonatype Nexus Repository Manager versions 3.x before 3.12.0 has XSS in multiple areas in the Administration UI.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2018-12100
- https://community.sonatype.com/t/repository-manager-3-12-0-released/31
- https://issues.sonatype.org/plugins/servlet/mobile#issue/NEXUS-16870
- https://issues.sonatype.org/secure/ReleaseNote.jspa?version=17493&projectId=10001
- https://support.sonatype.com/hc/en-us/articles/360018565994-CVE-2018-12100-Nexus-Repository-Manager-3-Cross-Site-Scripting-XSS-June-4th-2018
Связанные уязвимости
CVSS3: 4.8
nvd
больше 7 лет назад
Sonatype Nexus Repository Manager versions 3.x before 3.12.0 has XSS in multiple areas in the Administration UI.