Lucene search
China National Vulnerability DatabaseCNVD-2023-62627HistoryJul 30, 2023 - 12:00 a.m.
JetBrains TeamCity Cross-Site Scripting Vulnerability (CNVD-2023-62627)
2023-07-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
jetbrains
teamcity
cross-site scripting
vulnerability
code quality analysis
continuous integration
czech company
0.0005 Low
EPSS
Percentile
17.0%
JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. A cross-site scripting vulnerability exists in JetBrains TeamCity versions prior to 2023.05.2, which stems from the application’s lack of effective filtering and escaping of user-supplied data, and can be exploited by an attacker to execute arbitrary web script or HTML by injecting a crafted payload.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jetbrains teamcity | lt | 2023.05.2 |
Related
cve
cve
CVE-2023-39175
2023-07-25 15:15:13
cvelist
cvelist
CVE-2023-39175
2023-07-25 14:45:45
prion
prion
Cross site scripting
2023-07-25 15:15:00
nvd
nvd
CVE-2023-39175
2023-07-25 15:15:13
nessus
nessus
TeamCity Server < 2023.05.2 Multiple Vulnerabilities
2023-09-29 00:00:00