CVE-2021-25765

In JetBrains YouTrack before 2020.4.4701, CSRF via attachment upload was possible...

JetBrains YouTrack Attachment Operation Permission Check Improperly Vulnerability

YouTrack is a keyboard-based issue and project tracking tool from the Czech company JetBrains, primarily used for tracking tasks and defect correction arrangements during development. A vulnerability exists in JetBrains YouTrack versions prior to 2020.4.4701 due to improper checking of attachment...

CVE-2021-25768

In JetBrains YouTrack before 2020.4.4701, permissions for attachments actions were checked improperly...

CVE-2021-25766

In JetBrains YouTrack before 2020.4.4701, improper resource access checks were made...

CVE-2021-25768

CVE-2021-25768 concerns JetBrains YouTrack prior to 2020.4.4701, where attachment operation permissions were checked improperly. The root cause is an incorrect permissions check on actions related to attachments, enabling potential access control weaknesses in that version range. Public reference...

JetBrains YouTrack 安全漏洞

YouTrack is a keyboard-based issue and project tracking tool from the Czech company JetBrains, primarily used for tracking tasks and defect correction arrangements during development. A vulnerability exists in JetBrains YouTrack versions prior to 2020.4.4701 due to improper checking of attachment...

Jetbrains JetBrains YouTrack 跨站请求伪造漏洞

YouTrack is a keyboard-based issue and project tracking tool from the Czech company JetBrains, primarily used for tracking tasks and defect correction arrangements during development. A cross-site request forgery vulnerability exists in JetBrains YouTrack versions prior to 2020.4.4701. An attacke...