PT-2024-36471 · Chat2Db · Chat2Db

Name of the Vulnerable Software and Affected Versions: Chat2DB version 0.3.5 Description: A vulnerability in the /datagrip/upload component of Chat2DB allows attackers to execute arbitrary code via supplying a crafted XML input, exploiting an XML External Entity XXE injection flaw. Recommendation...

Chat2DB 安全漏洞

Chat2DB is an AI-driven SQL client open-sourced by CodePhiliaX. A security vulnerability exists in Chat2DB version v0.3.5, which stems from the presence of XML external entity injection in the component /datagrip/upload, allowing an attacker to execute arbitrary code by providing crafted XML inpu...

CVE-2024-37051

GitHub access token could be exposed to third-party sites in JetBrains IDEs after version 2023.1 and less than: IntelliJ IDEA 2023.1.7, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP3; Aqua 2024.1.2; CLion 2023.1.7, 2023.2.4, 2023.3.5, 2024.1.3, 2024.2 EAP2; DataGrip 2023.1.3, 2023.2.4, 2023.3.5,...

JetBrains Multiple IDE Security Vulnerabilities

JetBrains IntelliJ IDEA and others are products of the Czech company JetBrains.JetBrains IntelliJ IDEA is a set of integrated development environments IDEs for the Java language.JetBrains PyCharm is an integrated development environment IDE for the Python language. JetBrains PhpStorm is a softwar...

PT-2024-4040 · Jetbrains · Mps +12

Name of the Vulnerable Software and Affected Versions: JetBrains IntelliJ IDEA versions 2023.1 through 2023.1.7 JetBrains IntelliJ IDEA versions 2023.2 through 2023.2.7 JetBrains IntelliJ IDEA versions 2023.3 through 2023.3.7 JetBrains IntelliJ IDEA version 2024.1.3 JetBrains IntelliJ IDEA versio...

JetBrains IDE Detection (HTTP)

HTTP based detection of JetBrains IDE products. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...