Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2021-25761
In JetBrains Ktor prior to 1.5.0, a birthday attack on SessionStorage key was possible.
Jetbrains Ktor
5.3
CVSSv3
CVE-2021-25762
In JetBrains Ktor prior to 1.4.3, HTTP Request Smuggling was possible.
Jetbrains Ktor
5.3
CVSSv3
CVE-2021-25763
In JetBrains Ktor prior to 1.4.2, weak cipher suites were enabled by default.
Jetbrains Ktor
5.3
CVSSv3
CVE-2021-25764
In JetBrains PhpStorm prior to 2020.3, source code could be added to debug logs.
Jetbrains Phpstorm
8.8
CVSSv3
CVE-2021-25765
In JetBrains YouTrack prior to 2020.4.4701, CSRF via attachment upload was possible.
Jetbrains Youtrack
5.3
CVSSv3
CVE-2021-25767
In JetBrains YouTrack prior to 2020.6.1767, an issue's existence could be disclosed via YouTrack command execution.
Jetbrains Youtrack
5.3
CVSSv3
CVE-2021-25768
In JetBrains YouTrack prior to 2020.4.4701, permissions for attachments actions were checked improperly.
Jetbrains Youtrack
7.5
CVSSv3
CVE-2021-25769
In JetBrains YouTrack prior to 2020.4.6808, the YouTrack administrator wasn't able to access attachments.
Jetbrains Youtrack
9.8
CVSSv3
CVE-2021-25770
In JetBrains YouTrack prior to 2020.5.3123, server-side template injection (SSTI) was possible, which could lead to code execution.
Jetbrains Youtrack
2 Github repositories
6.1
CVSSv3
CVE-2021-25773
JetBrains TeamCity prior to 2020.2 was vulnerable to reflected XSS on several pages.
Jetbrains Teamcity
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
7
8
9
10
NEXT »