漏洞描述
未授权访问漏洞是指攻击者未经过身份验证或绕过身份验证机制,就能够访问系统资源或执行敏感操作的安全漏洞。这种漏洞可能导致敏感信息泄露、数据篡改、服务中断等严重后果,给系统安全性带来极大威胁。
Nexus-Repository swagger.json 未授权访问漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2025-55190: ArgoCD Project API Token Repository Credentials Exposure
- AJ-Report /;swagger-ui/dataSource/pageList SQL 注入漏洞(CVE-2024-5350)
- POC CVE-2009-4679: Joomla! Portfolio Nexus - Remote File Inclusion
- POC CVE-2019-7238: Sonatype Nexus Repository Manager <3.15.0 - Remote Code Execution
- POC CVE-2020-10199: Sonatype Nexus Repository Manager 3 - Remote Code Execution
- POC CVE-2020-24571: NexusDB <4.50.23 - Local File Inclusion
- POC CVE-2022-46888: NexusPHP <1.7.33 - Cross-Site Scripting
- POC CVE-2024-4956: Sonatype Nexus Repository Manager 3 - Local File Inclusion
- POC CVE-2024-5082: Nexus Repository 2 - Remote Code Execution
- POC CVE-2020-10199: Nexus Repository before 3.21.2 allows JavaEL Injection
- POC CVE-2020-10204: Nexus Repository before 3.21.2 Remote Code Execution
- POC CVE-2020-24571: NexusDB v4.50.22 Path Traversal
- POC CVE-2024-4956: Nexus Repository Manager 文件读取漏洞