Description Sonatype Nexus Repository Manager 2.x before 2.14.15 allows Remote Code Execution. Remediation References CVE-2019-15893 Related Vulnerabilities Frontaccounting Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5148) WordPress Plugin Admin Columns CSV Injection (3.4.6) WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5205) phpMyAdmin Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2009-1148) WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite Multiple Vulnerabilities (1.3.6) Severity High Classification CVE-2019-15893 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities