Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains hub vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2019-12847
In JetBrains Hub versions earlier than 2018.4.11298, the audit events for SMTPSettings show a cleartext password to the admin user. It is only relevant in cases where a password has not changed since 2017, and if the audit log still contains events from before that period.
Jetbrains Hub
7.5
CVSSv3
CVE-2021-43182
In JetBrains Hub prior to 2021.1.13415, a DoS via user information is possible.
Jetbrains Hub
5.4
CVSSv3
CVE-2022-48429
In JetBrains Hub prior to 2022.3.15573, 2022.2.15572, 2022.1.15583 reflected XSS in dashboards was possible
Jetbrains Hub
9.8
CVSSv3
CVE-2022-48477
In JetBrains Hub prior to 2023.1.15725 SSRF protection in Auth Module integration was missing
Jetbrains Hub
7.5
CVSSv3
CVE-2021-31901
In JetBrains Hub prior to 2021.1.13079, two-factor authentication wasn't enabled properly for the All Users group.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3