Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains teamcity vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-15848
JetBrains TeamCity 2019.1 and 2019.1.1 allows cross-site scripting (XSS), potentially making it possible to send an arbitrary HTTP request to a TeamCity server under the name of the currently logged-in user.
Jetbrains Teamcity 2019.1
Jetbrains Teamcity 2019.1.1
10
CVSSv2
CVE-2019-12157
In JetBrains UpSource versions prior to 2018.2 build 1293, there is credential disclosure via RPC commands.
Jetbrains Upsource 2018.2
Jetbrains Teamcity
Jetbrains Upsource
NA
CVE-2024-31135
In JetBrains TeamCity prior to 2024.03 open redirect was possible on the login page
Jetbrains Teamcity
NA
CVE-2024-31137
In JetBrains TeamCity prior to 2024.03 reflected XSS was possible via Space connection configuration
Jetbrains Teamcity
NA
CVE-2024-31138
In JetBrains TeamCity prior to 2024.03 xSS was possible via Agent Distribution settings
Jetbrains Teamcity
4
CVSSv2
CVE-2020-11686
In JetBrains TeamCity prior to 2019.1.4, a project administrator was able to retrieve some TeamCity server settings.
Jetbrains Teamcity
7.5
CVSSv2
CVE-2021-43193
In JetBrains TeamCity prior to 2021.1.2, remote code execution via the agent push functionality is possible.
Jetbrains Teamcity
5
CVSSv2
CVE-2019-12841
Incorrect handling of user input in ZIP extraction was detected in JetBrains TeamCity. The issue was fixed in TeamCity 2018.2.2.
Jetbrains Teamcity
4.3
CVSSv2
CVE-2019-12843
A possible stored JavaScript injection requiring a deliberate server administrator action was detected. The issue was fixed in JetBrains TeamCity 2018.2.3.
Jetbrains Teamcity
4.3
CVSSv2
CVE-2019-12844
A possible stored JavaScript injection was detected on one of the JetBrains TeamCity pages. The issue was fixed in TeamCity 2018.2.3.
Jetbrains Teamcity
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »