jetbrains
582 tracked vulnerabilities.
CVE-2024-52555
MEDIUM
JetBrains WebStorm < 2024.3.0 - Remote Code Execution via Type Definitions Installer Script
Nov 15, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-50582
MEDIUM
JetBrains YouTrack < 2024.3.47707 - Stored Cross-Site Scripting in Markdown Elements
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50581
MEDIUM
JetBrains YouTrack < 2024.3.47707 - Cross-Site Scripting via Comment Tag
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50580
MEDIUM
JetBrains YouTrack < 2024.3.47707 - Stored Cross-Site Scripting via Markdown Parsing
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50579
MEDIUM
JetBrains YouTrack < 2024.3.47707 - Reflected Cross-Site Scripting via Insecure Link Sanitization
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50578
MEDIUM
JetBrains YouTrack < 2024.3.47707 - Stored Cross-Site Scripting via Sprint Value on Agile Boards Page
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50577
MEDIUM
JetBrains YouTrack < 2024.3.47707 - Stored Cross-Site Scripting via Angular Template Injection in Hub Settings
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50576
MEDIUM
JetBrains YouTrack < 2024.3.47707 - Stored Cross-Site Scripting via Vendor URL in App Manifest
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50575
MEDIUM
JetBrains YouTrack < 2024.3.47707 - Reflected Cross-Site Scripting via Widget API
Oct 28, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-50574
MEDIUM
JetBrains YouTrack < 2024.3.47707 - Denial of Service via Email Header Parsing
Oct 28, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-50573
MEDIUM
JetBrains Hub < 2024.3.47707 - Missing Authorization for Permanent Token Generation
Oct 28, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-49580
MEDIUM
JetBrains Ktor <2.3.13 - Info Disclosure
Oct 17, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-49579
HIGH
JetBrains YouTrack <2024.3.47197 - XSS
Oct 17, 2024
CVSS 8.1
EPSS 0.00
CVE-2024-48902
MEDIUM
JetBrains YouTrack < 2024.3.46677 - Unauthorized Application Deletion via API
Oct 10, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-47951
LOW
JetBrains TeamCity < 2024.07.3 - Stored Cross-Site Scripting via Server Global Settings
Oct 08, 2024
CVSS 3.5
EPSS 0.01
CVE-2024-47950
LOW
JetBrains TeamCity < 2024.07.03 - Stored Cross-Site Scripting in Backup Configuration Settings
Oct 08, 2024
CVSS 3.5
EPSS 0.01
CVE-2024-47949
MEDIUM
JetBrains TeamCity < 2024.07.3 - Path Traversal and Arbitrary File Write via Backup File
Oct 08, 2024
CVSS 4.9
EPSS 0.23
CVE-2024-47948
MEDIUM
JetBrains TeamCity < 2024.07.3 - Path Traversal via Server Backups
Oct 08, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-47161
MEDIUM
JetBrains TeamCity <2024.07.3 - Info Disclosure
Oct 08, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-47162
MEDIUM
JetBrains YouTrack <2024.3.44799 - Info Disclosure
Sep 19, 2024
CVSS 4.1
EPSS 0.00
CVE-2024-47160
MEDIUM
JetBrains YouTrack <2024.3.44799 - Info Disclosure
Sep 19, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-47159
MEDIUM
JetBrains YouTrack <2024.3.44799 - Privilege Escalation
Sep 19, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-46970
LOW
JetBrains IntelliJ IDEA < 2024.1.0 - HTML Injection via Project Name
Sep 16, 2024
CVSS 3.3
EPSS 0.00
CVE-2024-43810
MEDIUM
JetBrains TeamCity < 2024.07.1 - Reflected Cross-Site Scripting in AWS Core Plugin
Aug 16, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-43809
LOW
JetBrains TeamCity < 2024.07.1 - Reflected Cross-Site Scripting on agentPushPreset Page
Aug 16, 2024
CVSS 3.5
EPSS 0.00
Products
teamcity 273
youtrack 116
intellij_idea 63
hub 36
ktor 21
TeamCity 17
YouTrack 14
toolbox 11
pycharm 9
rider 8
kotlin 7
IntelliJ IDEA 6
youtrack_mobile 6
goland 5
upsource 5
webstorm 5
phpstorm 4
resharper 4
rubymine 4
Hub 3
code_with_me 3
junie 3
space 3
clion 2
dottrace 2
mps 2
Datalore 1
GoLand 1
Junie 1
Kotlin 1
Quick Filters