CVE-2025-13488 | Sonatype Nexus Repository up to 3.86.2 Security Header cross site scripting

A vulnerability, which was classified as problematic, has been found in Sonatype Nexus Repository up to 3.86.2. This affects an unknown function of the component Security Header Handler. Performing manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2025-13488. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More