Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
youtrack vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-25771
In JetBrains YouTrack prior to 2020.6.1099, project information could be potentially disclosed.
Jetbrains Youtrack
6.8
CVSSv2
CVE-2019-12851
A CSRF vulnerability was detected in one of the admin endpoints of JetBrains YouTrack. The issue was fixed in YouTrack 2018.4.49852.
Jetbrains Youtrack
NA
CVE-2023-38068
In JetBrains YouTrack prior to 2023.1.16597 captcha was not properly validated for Helpdesk forms
Jetbrains Youtrack
NA
CVE-2024-22370
In JetBrains YouTrack prior to 2023.3.22666 stored XSS via markdown was possible
Jetbrains Youtrack
6.4
CVSSv2
CVE-2021-37549
In JetBrains YouTrack prior to 2021.1.11111, sandboxing in workflows was insufficient.
Jetbrains Youtrack
5
CVSSv2
CVE-2021-37551
In JetBrains YouTrack prior to 2021.2.16363, system user passwords were hashed with SHA-256.
Jetbrains Youtrack
NA
CVE-2023-50871
In JetBrains YouTrack prior to 2023.3.22268 authorization check for inline comments inside thread replies was missed
Jetbrains Youtrack
5
CVSSv2
CVE-2019-18369
In JetBrains YouTrack prior to 2019.2.55152, removing tags from the issues list without the corresponding permission was possible.
Jetbrains Youtrack
5
CVSSv2
CVE-2020-25208
In JetBrains YouTrack prior to 2020.4.4701, an attacker could enumerate users via the REST API without appropriate permissions.
Jetbrains Youtrack
5
CVSSv2
CVE-2020-25209
In JetBrains YouTrack prior to 2020.3.6638, improper access control for some subresources leads to information disclosure via the REST API.
Jetbrains Youtrack
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »