CVE-2026-3438
Vulnerability Description
A reflected cross-site scripting vulnerability exists in Sonatype Nexus Repository versions 3.0.0 through 3.90.2 that allows unauthenticated remote attackers to execute arbitrary JavaScript in a victim's browser through a specially crafted URL. Exploitation requires user interaction.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-79
Source
NVD
Discussion (0)
Add Comment
No comments yet. Be the first!