Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Nexus Repository Manager Server-Side Request Forgery (SSRF) Vulnerability (CVE-2022-27907)

Description

Sonatype Nexus Repository Manager 3.x before 3.38.0 allows SSRF.

Remediation

References

Related Vulnerabilities

Apache Tomcat 7PK - Errors Vulnerability (CVE-2016-8745)

Envoy Proxy Improper Encoding or Escaping of Output Vulnerability (CVE-2024-45808)

WordPress Plugin Clever Addons for Elementor Multiple Cross-Site Scripting Vulnerabilities (2.0.15)

WebLogic CVE-2020-2963 Vulnerability (CVE-2020-2963)

Drupal Other Vulnerability (CVE-2006-2831)

Severity

Medium

Classification

CVE-2022-27907 CWE-918 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities