Nexus Repository Manager 3.21.1-01 Remote Code Execution
Posted by deepcore on April 17, 2020 – 4:33 pm
This Metasploit module exploits a Java Expression Language (EL) injection in Nexus Repository Manager versions up to and including 3.21.1 to execute code as the Nexus user. Tested against 3.21.1-01.
Post a reply
You must be logged in to post a comment.