2 matches found
CVE-2022-24347
JetBrains YouTrack before 2021.4.36872 was vulnerable to stored XSS via a project icon...
CVE-2022-24347
CVE-2022-24347 affects JetBrains YouTrack prior to version 2021.4.36872 and is a stored cross-site scripting (XSS) vulnerability via the application project icon. The root cause is insufficient validation/filtering of user-supplied data and output in the project icon rendering, enabling an attack...