Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Rider Security Vulnerabilities

cve
cve

CVE-2024-37051

GitHub access token could be exposed to third-party sites in JetBrains IDEs after version 2023.1 and less than: IntelliJ IDEA 2023.1.7, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP3; Aqua 2024.1.2; CLion 2023.1.7, 2023.2.4, 2023.3.5, 2024.1.3, 2024.2 EAP2; DataGrip 2023.1.3, 2023.2.4, 2023.3.5,...

9.3CVSS

6.9AI Score

0.001EPSS

2024-06-10 04:15 PM
50
cve
cve

CVE-2024-24939

In JetBrains Rider before 2023.3.3 logging of environment variables containing secret values was...

5.3CVSS

5.3AI Score

0.0005EPSS

2024-02-06 10:15 AM
16
cve
cve

CVE-2022-37396

In JetBrains Rider before 2022.2 Trust and Open Project dialog could be bypassed, leading to local code...

7.8CVSS

7.7AI Score

0.0004EPSS

2022-08-03 04:15 PM
399
4
cve
cve

CVE-2014-125001

A vulnerability classified as critical has been found in Cardo Systems Scala Rider Q3. Affected is the file /cardo/api of the Cardo-Updater. Unauthenticated remote code execution with root permissions is possible. Firewalling or disabling the service is...

8.8CVSS

9.1AI Score

0.002EPSS

2022-05-24 04:15 PM
294
13
cve
cve

CVE-2022-29821

In JetBrains Rider before 2022.1 local code execution via links in ReSharper Quick Documentation was...

7.7CVSS

7.7AI Score

0.0004EPSS

2022-04-28 10:15 AM
46
cve
cve

CVE-2020-7906

In JetBrains Rider versions 2019.3 EAP2 through 2019.3 EAP7, there were unsigned binaries provided by the Windows installer. This issue was fixed in release version...

7.5CVSS

7.5AI Score

0.002EPSS

2020-01-30 06:15 PM
34
cve
cve

CVE-2019-14960

JetBrains Rider before 2019.1.2 was using an unsigned JetBrains.Rider.Unity.Editor.Plugin.Repacked.dll...

7.8CVSS

7.5AI Score

0.0004EPSS

2019-10-01 04:15 PM
59
cve
cve

CVE-2006-0439

Text Rider 2.4 stores sensitive data in the data directory under the web document root with insufficient access control, which allows remote attackers to obtain usernames and password hashes by directly accessing...

6.7AI Score

0.016EPSS

2006-01-26 10:03 PM
18
cve
cve

CVE-2006-0440

Text Rider 2.4 allows attackers to bypass authentication and upload files without providing a valid password by obtaining the MD5 hash of the password (possibly via another vulnerability that reads it from a data file), then including the hash in a...

7AI Score

0.002EPSS

2006-01-26 10:03 PM
27
cve
cve

CVE-2005-3931

SQL injection vulnerability in default.asp in ASP-Rider 1.6 allows remote attackers to execute arbitrary SQL commands via the HTTP...

8.8AI Score

0.008EPSS

2005-12-01 11:00 AM
23
cve
cve

CVE-2004-1401

SQL injection vulnerability in verify.asp in Asp-rider allows remote attackers to execute arbitrary SQL statements and bypass authentication via the username...

8.4AI Score

0.002EPSS

2005-02-12 05:00 AM
21