Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains youtrack vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-22370
In JetBrains YouTrack prior to 2023.3.22666 stored XSS via markdown was possible
Jetbrains Youtrack
7.5
CVSSv2
CVE-2019-12850
A query injection was possible in JetBrains YouTrack. The issue was fixed in YouTrack 2018.4.49168.
Jetbrains Youtrack
4
CVSSv2
CVE-2020-24618
In JetBrains YouTrack versions prior to 2020.3.4313, 2020.2.11008, 2020.1.11011, 2019.1.65514, 2019.2.65515, and 2019.3.65516, an attacker can retrieve an issue description without appropriate access.
Jetbrains Youtrack
7.5
CVSSv2
CVE-2019-12867
Certain actions could cause privilege escalation for issue attachments in JetBrains YouTrack. The issue was fixed in 2018.4.49168.
Jetbrains Youtrack
5
CVSSv2
CVE-2020-7912
In JetBrains YouTrack prior to 2019.2.59309, SMTP/Jabber settings could be accessed using backups.
Jetbrains Youtrack
6.4
CVSSv2
CVE-2021-37549
In JetBrains YouTrack prior to 2021.1.11111, sandboxing in workflows was insufficient.
Jetbrains Youtrack
5
CVSSv2
CVE-2021-37550
In JetBrains YouTrack prior to 2021.2.16363, time-unsafe comparisons were used.
Jetbrains Youtrack
5
CVSSv2
CVE-2021-37551
In JetBrains YouTrack prior to 2021.2.16363, system user passwords were hashed with SHA-256.
Jetbrains Youtrack
3.5
CVSSv2
CVE-2021-37552
In JetBrains YouTrack prior to 2021.2.17925, stored XSS was possible.
Jetbrains Youtrack
5
CVSSv2
CVE-2021-37553
In JetBrains YouTrack prior to 2021.2.16363, an insecure PRNG was used.
Jetbrains Youtrack
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111
CVE-2024-32884
IDOR
CVE-2023-1000
CVE-2024-33260
CVE-2024-3682
reflected XSS
race condition
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »