CVE-2026-7308 | Sonatype Nexus Repository up to 3.91.x cross site scripting

May 11, 2026 Yanac

A vulnerability was found in Sonatype Nexus Repository up to 3.91.x and classified as problematic. This affects an unknown part. Executing a manipulation can lead to cross site scripting.

This vulnerability is handled as CVE-2026-7308. The attack can be executed remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More

CVE-2026-31248 | Docling up to 2.61.0 XML Parser etree.fromstring xml external entity reference
CVE-2026-43894 | jqlang jq up to 1.8.1 D2U integer overflow (GHSA-5v7p-2r57-2g4g)