Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains intellij idea vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2022-29816
In JetBrains IntelliJ IDEA prior to 2022.1 HTML injection into IDE messages was possible
Jetbrains Intellij Idea
4.3
CVSSv2
CVE-2022-29817
In JetBrains IntelliJ IDEA prior to 2022.1 reflected XSS via error messages in internal web server was possible
Jetbrains Intellij Idea
3.6
CVSSv2
CVE-2022-29818
In JetBrains IntelliJ IDEA prior to 2022.1 origin checks in the internal web server were flawed
Jetbrains Intellij Idea
4.4
CVSSv2
CVE-2022-29819
In JetBrains IntelliJ IDEA prior to 2022.1 local code execution via links in Quick Documentation was possible
Jetbrains Intellij Idea
5
CVSSv2
CVE-2021-25756
In JetBrains IntelliJ IDEA prior to 2020.2, HTTP links were used for several remote repositories instead of HTTPS.
Jetbrains Intellij Idea
NA
CVE-2024-24940
In JetBrains IntelliJ IDEA prior to 2023.3.3 path traversal was possible when unpacking archives
Jetbrains Intellij Idea
NA
CVE-2024-24941
In JetBrains IntelliJ IDEA prior to 2023.3.3 a plugin for JetBrains Space was able to send an authentication token to an inappropriate URL
Jetbrains Intellij Idea
7.8
CVSSv2
CVE-2017-8316
IntelliJ IDEA XML parser was found vulnerable to XML External Entity attack, an attacker can exploit the vulnerability by implementing malicious code on both Androidmanifest.xml.
Jetbrains Intellij Idea
7.5
CVSSv2
CVE-2020-11690
In JetBrains IntelliJ IDEA prior to 2020.1, the license server could be resolved to an untrusted host in some cases.
Jetbrains Intellij Idea
NA
CVE-2023-51655
In JetBrains IntelliJ IDEA prior to 2023.3.2 code execution was possible in Untrusted Project mode via a malicious plugin repository specified in the project configuration
Jetbrains Intellij Idea
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »