Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains youtrack vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-16171
In JetBrains YouTrack up to and including 2019.2.56594, stored XSS was found on the issue page.
Jetbrains Youtrack
6.1
CVSSv3
CVE-2019-14952
JetBrains YouTrack versions prior to 2019.1.52584 had a possible XSS in the issue titles.
Jetbrains Youtrack
6.1
CVSSv3
CVE-2019-14953
JetBrains YouTrack versions prior to 2019.2.53938 had a possible XSS through issue attachments when using the Firefox browser.
Jetbrains Youtrack
5.4
CVSSv3
CVE-2024-22370
In JetBrains YouTrack prior to 2023.3.22666 stored XSS via markdown was possible
Jetbrains Youtrack
7.5
CVSSv3
CVE-2021-37550
In JetBrains YouTrack prior to 2021.2.16363, time-unsafe comparisons were used.
Jetbrains Youtrack
5.3
CVSSv3
CVE-2021-37551
In JetBrains YouTrack prior to 2021.2.16363, system user passwords were hashed with SHA-256.
Jetbrains Youtrack
7.5
CVSSv3
CVE-2021-37553
In JetBrains YouTrack prior to 2021.2.16363, an insecure PRNG was used.
Jetbrains Youtrack
4.3
CVSSv3
CVE-2021-37554
In JetBrains YouTrack prior to 2021.3.21051, a user could see boards without having corresponding permissions.
Jetbrains Youtrack
5.4
CVSSv3
CVE-2022-28648
In JetBrains YouTrack prior to 2022.1.43563 HTML code from the issue description was being rendered
Jetbrains Youtrack
5.4
CVSSv3
CVE-2022-28649
In JetBrains YouTrack prior to 2022.1.43563 it was possible to include an iframe from a third-party domain in the issue description
Jetbrains Youtrack
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »