Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains hub vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-43183
In JetBrains Hub prior to 2021.1.13690, the authentication throttling mechanism could be bypassed.
Jetbrains Hub
5
CVSSv2
CVE-2022-24327
In JetBrains Hub prior to 2021.1.13890, integration with JetBrains Account exposed an API key with excessive permissions.
Jetbrains Hub
4.3
CVSSv2
CVE-2021-37541
In JetBrains Hub prior to 2021.1.13402, HTML injection in the password reset email was possible.
Jetbrains Hub
3.5
CVSSv2
CVE-2022-29811
In JetBrains Hub prior to 2022.1.14638 stored XSS via project icon was possible.
Jetbrains Hub
5
CVSSv2
CVE-2019-14955
In JetBrains Hub versions earlier than 2018.4.11436, there was no option to force a user to change the password and no password expiration policy was implemented.
Jetbrains Hub
5.8
CVSSv2
CVE-2021-25757
In JetBrains Hub prior to 2020.1.12629, an open redirect was possible.
Jetbrains Hub
5
CVSSv2
CVE-2021-25760
In JetBrains Hub prior to 2020.1.12669, information disclosure via the public API was possible.
Jetbrains Hub
5
CVSSv2
CVE-2020-11691
In JetBrains Hub prior to 2020.1.12099, content spoofing in the Hub OAuth error message was possible.
Jetbrains Hub
6.4
CVSSv2
CVE-2022-25260
JetBrains Hub prior to 2021.1.14276 was vulnerable to blind Server-Side Request Forgery (SSRF).
Jetbrains Hub
1 Github repository
7.5
CVSSv2
CVE-2021-36209
In JetBrains Hub prior to 2021.1.13389, account takeover was possible during password reset.
Jetbrains Hub
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »