A vulnerability was found in Sonatype Nexus Repository up to 3.93.x. It has been declared as problematic. The affected element is an unknown function of the component Webhook. The manipulation of the argument URL results in server-side request forgery.
This vulnerability is cataloged as CVE-2026-14645. The attack may be launched remotely. There is no exploit available.