Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains youtrack vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-35299
In JetBrains YouTrack prior to 2024.1.29548 the SMTPS protocol communication lacked proper certificate hostname validation
NA
CVE-2024-28230
In JetBrains YouTrack prior to 2024.1.25893 attaching/detaching workflow to a project was possible without project admin permissions
NA
CVE-2024-28228
In JetBrains YouTrack prior to 2024.1.25893 creation comments on behalf of an arbitrary user in HelpDesk was possible
NA
CVE-2024-28229
In JetBrains YouTrack prior to 2024.1.25893 user without appropriate permissions could restore issues and articles
NA
CVE-2024-22370
In JetBrains YouTrack prior to 2023.3.22666 stored XSS via markdown was possible
Jetbrains Youtrack
NA
CVE-2023-50871
In JetBrains YouTrack prior to 2023.3.22268 authorization check for inline comments inside thread replies was missed
Jetbrains Youtrack
NA
CVE-2023-38068
In JetBrains YouTrack prior to 2023.1.16597 captcha was not properly validated for Helpdesk forms
Jetbrains Youtrack
NA
CVE-2023-35053
In JetBrains YouTrack prior to 2023.1.10518 a DoS attack was possible via Helpdesk forms
Jetbrains Youtrack
NA
CVE-2023-35054
In JetBrains YouTrack prior to 2023.1.10518 stored XSS in a Markdown-rendering engine was possible
Jetbrains Youtrack
312
VMScore
CVE-2022-28649
In JetBrains YouTrack prior to 2022.1.43563 it was possible to include an iframe from a third-party domain in the issue description
Jetbrains Youtrack
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »