Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
youtrack vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2020-7912
In JetBrains YouTrack prior to 2019.2.59309, SMTP/Jabber settings could be accessed using backups.
Jetbrains Youtrack
6.1
CVSSv3
CVE-2020-7913
JetBrains YouTrack 2019.2 prior to 2019.2.59309 was vulnerable to XSS via an issue description.
Jetbrains Youtrack
5.3
CVSSv3
CVE-2020-27624
JetBrains YouTrack prior to 2020.3.888 was vulnerable to SSRF.
Jetbrains Youtrack
9.1
CVSSv3
CVE-2021-37549
In JetBrains YouTrack prior to 2021.1.11111, sandboxing in workflows was insufficient.
Jetbrains Youtrack
7.5
CVSSv3
CVE-2021-37550
In JetBrains YouTrack prior to 2021.2.16363, time-unsafe comparisons were used.
Jetbrains Youtrack
4.3
CVSSv3
CVE-2022-24343
In JetBrains YouTrack prior to 2021.4.31698, a custom logo could be set by a user who has read-only permissions.
Jetbrains Youtrack
5.4
CVSSv3
CVE-2022-24344
JetBrains YouTrack prior to 2021.4.31698 was vulnerable to stored XSS on the Notification templates page.
Jetbrains Youtrack
5.4
CVSSv3
CVE-2022-24347
JetBrains YouTrack prior to 2021.4.36872 was vulnerable to stored XSS via a project icon.
Jetbrains Youtrack
9.8
CVSSv3
CVE-2022-24442
JetBrains YouTrack prior to 2021.4.40426 was vulnerable to SSTI (Server-Side Template Injection) via FreeMarker templates.
Jetbrains Youtrack
1 Github repository
7.3
CVSSv3
CVE-2023-38068
In JetBrains YouTrack prior to 2023.1.16597 captcha was not properly validated for Helpdesk forms
Jetbrains Youtrack
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298
CVE-2024-20356
CVE-2023-21987
CVE-2024-33217
bypass
CVE-2024-31804
CVE-2024-32660
unauthorized
SSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »