Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2022-25264
In JetBrains TeamCity prior to 2021.2.3, environment variables of the "password" type could be logged in some cases.
Jetbrains Teamcity
5
CVSSv2
CVE-2022-24332
In JetBrains TeamCity prior to 2021.2, a logout action didn't remove a Remember Me cookie.
Jetbrains Teamcity
5
CVSSv2
CVE-2022-24336
In JetBrains TeamCity prior to 2021.2.1, an unauthenticated attacker can cancel running builds via an XML-RPC request to the TeamCity server.
Jetbrains Teamcity
4.3
CVSSv2
CVE-2022-24338
JetBrains TeamCity prior to 2021.2.1 was vulnerable to reflected XSS.
Jetbrains Teamcity
7.5
CVSSv2
CVE-2022-24340
In JetBrains TeamCity prior to 2021.2.1, XXE during the parsing of the configuration file was possible.
Jetbrains Teamcity
6.8
CVSSv2
CVE-2022-24342
In JetBrains TeamCity prior to 2021.2.1, URL injection leading to CSRF was possible.
Jetbrains Teamcity
1 Github repository
3.5
CVSSv2
CVE-2022-24344
JetBrains YouTrack prior to 2021.4.31698 was vulnerable to stored XSS on the Notification templates page.
Jetbrains Youtrack
3.5
CVSSv2
CVE-2022-24347
JetBrains YouTrack prior to 2021.4.36872 was vulnerable to stored XSS via a project icon.
Jetbrains Youtrack
3.5
CVSSv2
CVE-2020-11416
JetBrains Space through 2020-04-22 allows stored XSS in Chats.
Jetbrains Space
5
CVSSv2
CVE-2020-11685
In JetBrains GoLand prior to 2019.3.2, the plugin repository was accessed via HTTP instead of HTTPS.
Jetbrains Goland
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »