cve/2019/CVE-2019-7238.md

### [CVE-2019-7238](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7238)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

Sonatype Nexus Repository Manager before 3.15.0 has Incorrect Access Control.

### POC

#### Reference
- https://support.sonatype.com/hc/en-us/articles/360017310793-CVE-2019-7238-Nexus-Repository-Manager-3-Missing-Access-Controls-and-Remote-Code-Execution-February-5th-2019

#### Github
- https://github.com/0day404/vulnerability-poc
- https://github.com/0xT11/CVE-POC
- https://github.com/189569400/Meppo
- https://github.com/20142995/pocsuite
- https://github.com/20142995/pocsuite3
- https://github.com/20142995/sectool
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
- https://github.com/ArrestX/--POC
- https://github.com/Awrrays/FrameVul
- https://github.com/CLincat/vulcat
- https://github.com/Elsfa7-110/kenzer-templates
- https://github.com/HimmelAward/Goby_POC
- https://github.com/HxDDD/CVE-PoC
- https://github.com/KayCHENvip/vulnerability-poc
- https://github.com/Menthol1024/WVSM
- https://github.com/Miraitowa70/POC-Notes
- https://github.com/Ostorlab/KEV
- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
- https://github.com/SexyBeast233/SecBooks
- https://github.com/SugarP1g/LearningSecurity
- https://github.com/Threekiii/Awesome-Exploit
- https://github.com/Threekiii/Awesome-POC
- https://github.com/Threekiii/Vulhub-Reproduce
- https://github.com/TrojanAZhen/Self_Back
- https://github.com/WingsSec/Meppo
- https://github.com/Z0fhack/Goby_POC
- https://github.com/alphaSeclab/sec-daily-2019
- https://github.com/amcai/myscan
- https://github.com/bakery312/Vulhub-Reproduce
- https://github.com/d4n-sec/d4n-sec.github.io
- https://github.com/developer3000S/PoC-in-GitHub
- https://github.com/hectorgie/PoC-in-GitHub
- https://github.com/hktalent/bug-bounty
- https://github.com/huimzjty/vulwiki
- https://github.com/jas502n/CVE-2019-7238
- https://github.com/lnick2023/nicenice
- https://github.com/lp008/Hack-readme
- https://github.com/magicming200/CVE-2019-7238_Nexus_RCE_Tool
- https://github.com/mpgn/CVE-2019-7238
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/qazbnm456/awesome-cve-poc
- https://github.com/smallpiggy/CVE-2019-7238
- https://github.com/verctor/nexus_rce_CVE-2019-7238
- https://github.com/whoadmin/pocs
- https://github.com/xbl3/awesome-cve-poc_qazbnm456
- https://github.com/ycdxsb/Exploits
- https://github.com/zhangchi991022/Comprehensive-experiment-of-infomation-security
- https://github.com/zhengjim/loophole
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2019-7238](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7238)`
			`![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)`

			`### Description`

			`Sonatype Nexus Repository Manager before 3.15.0 has Incorrect Access Control.`

			`### POC`

			`#### Reference`
			`- https://support.sonatype.com/hc/en-us/articles/360017310793-CVE-2019-7238-Nexus-Repository-Manager-3-Missing-Access-Controls-and-Remote-Code-Execution-February-5th-2019`

			`#### Github`
			`- https://github.com/0day404/vulnerability-poc`
			`- https://github.com/0xT11/CVE-POC`
			`- https://github.com/189569400/Meppo`
			`- https://github.com/20142995/pocsuite`
			`- https://github.com/20142995/pocsuite3`
			`- https://github.com/20142995/sectool`
			`- https://github.com/ARPSyndicate/cvemon`
			`- https://github.com/ARPSyndicate/kenzer-templates`
			`- https://github.com/ArrestX/--POC`
			`- https://github.com/Awrrays/FrameVul`
			`- https://github.com/CLincat/vulcat`
			`- https://github.com/Elsfa7-110/kenzer-templates`
			`- https://github.com/HimmelAward/Goby_POC`
			`- https://github.com/HxDDD/CVE-PoC`
			`- https://github.com/KayCHENvip/vulnerability-poc`
			`- https://github.com/Menthol1024/WVSM`
			`- https://github.com/Miraitowa70/POC-Notes`
			`- https://github.com/Ostorlab/KEV`
			`- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors`
			`- https://github.com/SexyBeast233/SecBooks`
			`- https://github.com/SugarP1g/LearningSecurity`
			`- https://github.com/Threekiii/Awesome-Exploit`
			`- https://github.com/Threekiii/Awesome-POC`
			`- https://github.com/Threekiii/Vulhub-Reproduce`
Update CVE sources 2024-07-25 21:25 2024-07-25 21:25:12 +00:00			`- https://github.com/TrojanAZhen/Self_Back`
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`- https://github.com/WingsSec/Meppo`
			`- https://github.com/Z0fhack/Goby_POC`
			`- https://github.com/alphaSeclab/sec-daily-2019`
			`- https://github.com/amcai/myscan`
			`- https://github.com/bakery312/Vulhub-Reproduce`
			`- https://github.com/d4n-sec/d4n-sec.github.io`
			`- https://github.com/developer3000S/PoC-in-GitHub`
			`- https://github.com/hectorgie/PoC-in-GitHub`
			`- https://github.com/hktalent/bug-bounty`
			`- https://github.com/huimzjty/vulwiki`
			`- https://github.com/jas502n/CVE-2019-7238`
			`- https://github.com/lnick2023/nicenice`
			`- https://github.com/lp008/Hack-readme`
			`- https://github.com/magicming200/CVE-2019-7238_Nexus_RCE_Tool`
			`- https://github.com/mpgn/CVE-2019-7238`
			`- https://github.com/nomi-sec/PoC-in-GitHub`
			`- https://github.com/qazbnm456/awesome-cve-poc`
			`- https://github.com/smallpiggy/CVE-2019-7238`
			`- https://github.com/verctor/nexus_rce_CVE-2019-7238`
			`- https://github.com/whoadmin/pocs`
			`- https://github.com/xbl3/awesome-cve-poc_qazbnm456`
			`- https://github.com/ycdxsb/Exploits`
			`- https://github.com/zhangchi991022/Comprehensive-experiment-of-infomation-security`
			`- https://github.com/zhengjim/loophole`