Security Advisory

CVE-2021-29159

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-28 13:14:41

Last updated 2024-08-03 22:02:50

Assigner mitre

State PUBLISHED

Description

A cross-site scripting (XSS) vulnerability has been discovered in Nexus Repository Manager 3.x before 3.30.1. An attacker with a local account can create entities with crafted properties that, when viewed by an administrator, can execute arbitrary JavaScript in the context of the NXRM application.

← Browse all CVEs View on cve.org ↗