Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains youtrack vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2023-50871
In JetBrains YouTrack prior to 2023.3.22268 authorization check for inline comments inside thread replies was missed
Jetbrains Youtrack
5.4
CVSSv3
CVE-2021-43184
In JetBrains YouTrack prior to 2021.3.21051, stored XSS is possible.
Jetbrains Youtrack
5.4
CVSSv3
CVE-2022-24344
JetBrains YouTrack prior to 2021.4.31698 was vulnerable to stored XSS on the Notification templates page.
Jetbrains Youtrack
8.8
CVSSv3
CVE-2020-15817
In JetBrains YouTrack prior to 2020.1.1331, an external user could execute commands against arbitrary issues.
Jetbrains Youtrack
5.3
CVSSv3
CVE-2020-15819
JetBrains YouTrack prior to 2020.2.10643 was vulnerable to SSRF that allowed scanning internal ports.
Jetbrains Youtrack
6.5
CVSSv3
CVE-2020-15821
In JetBrains YouTrack prior to 2020.2.6881, a user without permission is able to create an article draft.
Jetbrains Youtrack
7.5
CVSSv3
CVE-2020-15823
JetBrains YouTrack prior to 2020.2.8873 is vulnerable to SSRF in the Workflow component.
Jetbrains Youtrack
5.4
CVSSv3
CVE-2022-28650
In JetBrains YouTrack prior to 2022.1.43700 it was possible to inject JavaScript into Markdown in the YouTrack Classic UI
Jetbrains Youtrack
5.3
CVSSv3
CVE-2020-25208
In JetBrains YouTrack prior to 2020.4.4701, an attacker could enumerate users via the REST API without appropriate permissions.
Jetbrains Youtrack
9.8
CVSSv3
CVE-2019-12850
A query injection was possible in JetBrains YouTrack. The issue was fixed in YouTrack 2018.4.49168.
Jetbrains Youtrack
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »