Description
A Directory Traversal issue was discovered in Sonatype Nexus Repository Manager 2.x before 2.14.19. A user that requests a crafted path can traverse up the file system to get access to content on disk (that the user running nxrm also has access to).
Remediation
References
Related Vulnerabilities
OpenVPN AS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-2061)
Drupal Core 7.x Cross-Site Scripting (7.0 - 7.79)
MySQL CVE-2020-14870 Vulnerability (CVE-2020-14870)
WordPress Plugin Rate my Post-WP Rating System Multiple Vulnerabilities (3.3.4)
Oracle Database Server CVE-2011-2253 Vulnerability (CVE-2011-2253)