Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains teamcity vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2021-43201
In JetBrains TeamCity prior to 2021.1.3, a newly created project could take settings from an already deleted project.
Jetbrains Teamcity
9.8
CVSSv3
CVE-2021-43202
In JetBrains TeamCity prior to 2021.1.3, the X-Frame-Options header is missing in some cases.
Jetbrains Teamcity
6.1
CVSSv3
CVE-2020-27627
JetBrains TeamCity prior to 2020.1.2 was vulnerable to URL injection.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2020-27629
In JetBrains TeamCity prior to 2020.1.5, secure dependency parameters could be not masked in depending builds when there are no internal artifacts.
Jetbrains Teamcity
7.5
CVSSv3
CVE-2020-35667
JetBrains TeamCity Plugin prior to 2020.2.85695 SSRF. Vulnerability that could potentially expose user credentials.
Jetbrains Teamcity
9.8
CVSSv3
CVE-2024-27198
In JetBrains TeamCity prior to 2023.11.4 authentication bypass allowing to perform admin actions was possible
Jetbrains Teamcity
14 Github repositories
6 Articles
7.5
CVSSv3
CVE-2019-12841
Incorrect handling of user input in ZIP extraction was detected in JetBrains TeamCity. The issue was fixed in TeamCity 2018.2.2.
Jetbrains Teamcity
6.1
CVSSv3
CVE-2019-12843
A possible stored JavaScript injection requiring a deliberate server administrator action was detected. The issue was fixed in JetBrains TeamCity 2018.2.3.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2019-12845
The generated Kotlin DSL settings allowed usage of an unencrypted connection for resolving artifacts. The issue was fixed in JetBrains TeamCity 2018.2.3.
Jetbrains Teamcity
4.3
CVSSv3
CVE-2019-12846
A user without the required permissions could gain access to some JetBrains TeamCity settings. The issue was fixed in TeamCity 2018.2.2.
Jetbrains Teamcity
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »