Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2021-43198
In JetBrains TeamCity prior to 2021.1.2, stored XSS is possible.
Jetbrains Teamcity
9.8
CVSSv3
CVE-2021-43200
In JetBrains TeamCity prior to 2021.1.2, permission checks in the Agent Push functionality were insufficient.
Jetbrains Teamcity
5.3
CVSSv3
CVE-2021-43201
In JetBrains TeamCity prior to 2021.1.3, a newly created project could take settings from an already deleted project.
Jetbrains Teamcity
9.8
CVSSv3
CVE-2021-43202
In JetBrains TeamCity prior to 2021.1.3, the X-Frame-Options header is missing in some cases.
Jetbrains Teamcity
7.5
CVSSv3
CVE-2021-43203
In JetBrains Ktor prior to 1.6.4, nonce verification during the OAuth2 authentication process is implemented improperly.
Jetbrains Ktor
6.5
CVSSv3
CVE-2020-26129
In JetBrains Ktor prior to 1.4.1, HTTP request smuggling was possible.
Jetbrains Ktor
5.4
CVSSv3
CVE-2023-41248
In JetBrains TeamCity prior to 2023.05.3 stored XSS was possible during Cloud Profiles configuration
Jetbrains Teamcity
6.1
CVSSv3
CVE-2023-41249
In JetBrains TeamCity prior to 2023.05.3 reflected XSS was possible during copying Build Step
Jetbrains Teamcity
6.1
CVSSv3
CVE-2023-41250
In JetBrains TeamCity prior to 2023.05.3 reflected XSS was possible during user registration
Jetbrains Teamcity
5.3
CVSSv3
CVE-2019-14957
The JetBrains Vim plugin before version 0.52 was storing individual project data in the global vim_settings.xml file. This xml file could be synchronized to a publicly accessible GitHub repository.
Jetbrains Vim
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »