Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains youtrack vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2019-14956
JetBrains YouTrack prior to 2019.2.53938 was using incorrect settings, allowing a user without necessary permissions to get other project names.
Jetbrains Youtrack
7.5
CVSSv2
CVE-2019-12850
A query injection was possible in JetBrains YouTrack. The issue was fixed in YouTrack 2018.4.49168.
Jetbrains Youtrack
6.8
CVSSv2
CVE-2019-12851
A CSRF vulnerability was detected in one of the admin endpoints of JetBrains YouTrack. The issue was fixed in YouTrack 2018.4.49852.
Jetbrains Youtrack
7.5
CVSSv2
CVE-2019-12852
An SSRF attack was possible on a JetBrains YouTrack server. The issue (1 of 2) was fixed in JetBrains YouTrack 2018.4.49168.
Jetbrains Youtrack
7.5
CVSSv2
CVE-2019-12866
An Insecure Direct Object Reference, with Authorization Bypass through a User-Controlled Key, was possible in JetBrains YouTrack. The issue was fixed in 2018.4.49168.
Jetbrains Youtrack
7.5
CVSSv2
CVE-2019-12867
Certain actions could cause privilege escalation for issue attachments in JetBrains YouTrack. The issue was fixed in 2018.4.49168.
Jetbrains Youtrack
5
CVSSv2
CVE-2021-31905
In JetBrains YouTrack prior to 2020.6.8801, information disclosure in an issue preview was possible.
Jetbrains Youtrack
6.8
CVSSv2
CVE-2019-15040
JetBrains YouTrack versions prior to 2019.1 had a CSRF vulnerability on the settings page.
Jetbrains Youtrack
5.8
CVSSv2
CVE-2019-15041
JetBrains YouTrack versions prior to 2019.1.52545 allowed unbounded URL whitelisting because of Inclusion of Functionality from an Untrusted Control Sphere.
Jetbrains Youtrack
4
CVSSv2
CVE-2020-11692
In JetBrains YouTrack prior to 2020.1.659, DB export was accessible to read-only administrators.
Jetbrains Youtrack
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »