Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
youtrack vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2020-15821
In JetBrains YouTrack prior to 2020.2.6881, a user without permission is able to create an article draft.
Jetbrains Youtrack
7.5
CVSSv2
CVE-2020-15822
In JetBrains YouTrack prior to 2020.2.10514, SSRF is possible because URL filtering can be escaped.
Jetbrains Youtrack
5
CVSSv2
CVE-2020-15823
JetBrains YouTrack prior to 2020.2.8873 is vulnerable to SSRF in the Workflow component.
Jetbrains Youtrack
7.5
CVSSv2
CVE-2021-43185
JetBrains YouTrack prior to 2021.3.23639 is vulnerable to Host header injection.
Jetbrains Youtrack
3.5
CVSSv2
CVE-2021-43186
JetBrains YouTrack prior to 2021.3.24402 is vulnerable to stored XSS.
Jetbrains Youtrack
4
CVSSv2
CVE-2022-24343
In JetBrains YouTrack prior to 2021.4.31698, a custom logo could be set by a user who has read-only permissions.
Jetbrains Youtrack
3.5
CVSSv2
CVE-2022-24347
JetBrains YouTrack prior to 2021.4.36872 was vulnerable to stored XSS via a project icon.
Jetbrains Youtrack
NA
CVE-2023-50871
In JetBrains YouTrack prior to 2023.3.22268 authorization check for inline comments inside thread replies was missed
Jetbrains Youtrack
6.8
CVSSv2
CVE-2021-25765
In JetBrains YouTrack prior to 2020.4.4701, CSRF via attachment upload was possible.
Jetbrains Youtrack
7.5
CVSSv2
CVE-2019-12850
A query injection was possible in JetBrains YouTrack. The issue was fixed in YouTrack 2018.4.49168.
Jetbrains Youtrack
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »