Description Sonatype Nexus Repository Manager versions 3.x before 3.12.0 has XSS in multiple areas in the Administration UI. Remediation References CVE-2018-12100 Related Vulnerabilities WordPress Plugin Enmask Captcha Malicious Redirects (1.3) MySQL CVE-2021-2171 Vulnerability (CVE-2021-2171) WordPress Plugin NewStatPress Multiple Vulnerabilities (1.0.4) Serendipity Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-8101) WebLogic CVE-2019-2395 Vulnerability (CVE-2019-2395) Severity Medium Classification CVE-2018-12100 CWE-707 CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities