jetbrains

582 tracked vulnerabilities.

CVE-2024-52555 MEDIUM
JetBrains WebStorm < 2024.3.0 - Remote Code Execution via Type Definitions Installer Script
Nov 15, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-50582 MEDIUM
JetBrains YouTrack < 2024.3.47707 - Stored Cross-Site Scripting in Markdown Elements
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50581 MEDIUM
JetBrains YouTrack < 2024.3.47707 - Cross-Site Scripting via Comment Tag
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50580 MEDIUM
JetBrains YouTrack < 2024.3.47707 - Stored Cross-Site Scripting via Markdown Parsing
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50579 MEDIUM
JetBrains YouTrack < 2024.3.47707 - Reflected Cross-Site Scripting via Insecure Link Sanitization
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50578 MEDIUM
JetBrains YouTrack < 2024.3.47707 - Stored Cross-Site Scripting via Sprint Value on Agile Boards Page
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50577 MEDIUM
JetBrains YouTrack < 2024.3.47707 - Stored Cross-Site Scripting via Angular Template Injection in Hub Settings
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50576 MEDIUM
JetBrains YouTrack < 2024.3.47707 - Stored Cross-Site Scripting via Vendor URL in App Manifest
Oct 28, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-50575 MEDIUM
JetBrains YouTrack < 2024.3.47707 - Reflected Cross-Site Scripting via Widget API
Oct 28, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-50574 MEDIUM
JetBrains YouTrack < 2024.3.47707 - Denial of Service via Email Header Parsing
Oct 28, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-50573 MEDIUM
JetBrains Hub < 2024.3.47707 - Missing Authorization for Permanent Token Generation
Oct 28, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-49580 MEDIUM
JetBrains Ktor <2.3.13 - Info Disclosure
Oct 17, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-49579 HIGH
JetBrains YouTrack <2024.3.47197 - XSS
Oct 17, 2024
CVSS 8.1
EPSS 0.00
CVE-2024-48902 MEDIUM
JetBrains YouTrack < 2024.3.46677 - Unauthorized Application Deletion via API
Oct 10, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-47951 LOW
JetBrains TeamCity < 2024.07.3 - Stored Cross-Site Scripting via Server Global Settings
Oct 08, 2024
CVSS 3.5
EPSS 0.01
CVE-2024-47950 LOW
JetBrains TeamCity < 2024.07.03 - Stored Cross-Site Scripting in Backup Configuration Settings
Oct 08, 2024
CVSS 3.5
EPSS 0.01
CVE-2024-47949 MEDIUM
JetBrains TeamCity < 2024.07.3 - Path Traversal and Arbitrary File Write via Backup File
Oct 08, 2024
CVSS 4.9
EPSS 0.23
CVE-2024-47948 MEDIUM
JetBrains TeamCity < 2024.07.3 - Path Traversal via Server Backups
Oct 08, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-47161 MEDIUM
JetBrains TeamCity <2024.07.3 - Info Disclosure
Oct 08, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-47162 MEDIUM
JetBrains YouTrack <2024.3.44799 - Info Disclosure
Sep 19, 2024
CVSS 4.1
EPSS 0.00
CVE-2024-47160 MEDIUM
JetBrains YouTrack <2024.3.44799 - Info Disclosure
Sep 19, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-47159 MEDIUM
JetBrains YouTrack <2024.3.44799 - Privilege Escalation
Sep 19, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-46970 LOW
JetBrains IntelliJ IDEA < 2024.1.0 - HTML Injection via Project Name
Sep 16, 2024
CVSS 3.3
EPSS 0.00
CVE-2024-43810 MEDIUM
JetBrains TeamCity < 2024.07.1 - Reflected Cross-Site Scripting in AWS Core Plugin
Aug 16, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-43809 LOW
JetBrains TeamCity < 2024.07.1 - Reflected Cross-Site Scripting on agentPushPreset Page
Aug 16, 2024
CVSS 3.5
EPSS 0.00