Central Security Project Program Statistics

View program

3 total issues disclosed

$0 total paid publicly

Most disclosed (1 disclosures) — Man-in-the-Middle

Disclosed Reports

Report Title Vulnerability Type Disclosed By Severity Disclosed on
Repositories of datanucleus are fetched over insecure protocol (http insted of https) Man-in-the-Middle keval_j High 2020-10-05
Unsafe deserialization in Nexus Repository helm plugin Deserialization of Untrusted Data c0d3p1ut0s Critical 2020-09-11
OS Command Injection in Nexus Repository Manager 2.x -- Bypass for Nexus Repository Manage 2.14.15-01 Command Injection fix Command Injection - Generic longofo Critical 2020-06-29