Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains hub vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2022-25259
JetBrains Hub prior to 2021.1.14276 was vulnerable to reflected XSS.
Jetbrains Hub
9.1
CVSSv3
CVE-2022-25260
JetBrains Hub prior to 2021.1.14276 was vulnerable to blind Server-Side Request Forgery (SSRF).
Jetbrains Hub
1 Github repository
4.8
CVSSv3
CVE-2022-29811
In JetBrains Hub prior to 2022.1.14638 stored XSS via project icon was possible.
Jetbrains Hub
7.5
CVSSv3
CVE-2022-24327
In JetBrains Hub prior to 2021.1.13890, integration with JetBrains Account exposed an API key with excessive permissions.
Jetbrains Hub
6.5
CVSSv3
CVE-2022-24328
In JetBrains Hub prior to 2021.1.13956, an unprivileged user could perform DoS.
Jetbrains Hub
9.8
CVSSv3
CVE-2022-25262
In JetBrains Hub prior to 2022.1.14434, SAML request takeover was possible.
Jetbrains Hub
1 Github repository
5.3
CVSSv3
CVE-2019-14955
In JetBrains Hub versions earlier than 2018.4.11436, there was no option to force a user to change the password and no password expiration policy was implemented.
Jetbrains Hub
5.3
CVSSv3
CVE-2022-34894
In JetBrains Hub prior to 2022.2.14799, insufficient access control allowed the hijacking of untrusted services
Jetbrains Hub
1 Github repository
9.8
CVSSv3
CVE-2021-36209
In JetBrains Hub prior to 2021.1.13389, account takeover was possible during password reset.
Jetbrains Hub
6.1
CVSSv3
CVE-2021-25757
In JetBrains Hub prior to 2020.1.12629, an open redirect was possible.
Jetbrains Hub
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »