Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains hub vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-14955
In JetBrains Hub versions earlier than 2018.4.11436, there was no option to force a user to change the password and no password expiration policy was implemented.
Jetbrains Hub
7.5
CVSSv2
CVE-2021-36209
In JetBrains Hub prior to 2021.1.13389, account takeover was possible during password reset.
Jetbrains Hub
3.5
CVSSv2
CVE-2022-29811
In JetBrains Hub prior to 2022.1.14638 stored XSS via project icon was possible.
Jetbrains Hub
6.4
CVSSv2
CVE-2022-25260
JetBrains Hub prior to 2021.1.14276 was vulnerable to blind Server-Side Request Forgery (SSRF).
Jetbrains Hub
1 Github repository
4.3
CVSSv2
CVE-2022-25259
JetBrains Hub prior to 2021.1.14276 was vulnerable to reflected XSS.
Jetbrains Hub
7.5
CVSSv2
CVE-2022-25262
In JetBrains Hub prior to 2022.1.14434, SAML request takeover was possible.
Jetbrains Hub
1 Github repository
5.8
CVSSv2
CVE-2021-25757
In JetBrains Hub prior to 2020.1.12629, an open redirect was possible.
Jetbrains Hub
4
CVSSv2
CVE-2021-25759
In JetBrains Hub prior to 2020.1.12629, an authenticated user can delete 2FA settings of any other user.
Jetbrains Hub
5
CVSSv2
CVE-2021-25760
In JetBrains Hub prior to 2020.1.12669, information disclosure via the public API was possible.
Jetbrains Hub
4
CVSSv2
CVE-2022-24328
In JetBrains Hub prior to 2021.1.13956, an unprivileged user could perform DoS.
Jetbrains Hub
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »