CVE-2019-7238

This is a functional exploit for CVE-2019-7238, targeting Nexus Repository Manager 3. It leverages JEXL expression injection to achieve unauthenticated remote code execution via the `previewAssets` endpoint.

This is a Python-based exploit for CVE-2019-7238, targeting Nexus Repository Manager versions before 3.15.0. It leverages a deserialization vulnerability in the ExtDirect API to achieve remote code execution (RCE) by sending a malicious payload.

This repository contains a working exploit for CVE-2019-7238, a remote code execution vulnerability in Nexus Repository Manager. The exploit leverages JEXL expression injection to execute arbitrary commands on the target system.

This repository contains a Java-based tool for detecting and exploiting CVE-2019-7238, a remote code execution vulnerability in Nexus Repository Manager 3 due to insufficient access control. The tool supports both GUI and command-line modes for executing system commands on vulnerable targets.

This repository contains a README describing multiple CVEs, including CVE-2020-0796 (SMBv3 RCE), but does not include actual exploit code or Nmap scripts. It serves as a high-level overview of vulnerabilities without functional PoC.

This is a working exploit for CVE-2019-7238, targeting Nexus Repository Manager 3.x. It leverages a JEXL expression injection vulnerability to achieve remote code execution (RCE) by defining a malicious Java class and invoking it.