Description
Sonatype Nexus Repository Manager before 3.17.0 establishes a default administrator user with weak defaults (fixed credentials).
Remediation
References
Related Vulnerabilities
PHP Resource Management Errors Vulnerability (CVE-2007-4660)
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7873)
PHP Other Vulnerability (CVE-2006-5465)
Drupal Core 8.7.4 Security Bypass (8.7.4)
WordPress Plugin Master Slider-WordPress Responsive Touch Slider Unspecified Vulnerability (2.18.2)