2 matches found
TeamCity Server < 2024.3.1 Multiple Vulnerabilities
According to its its self-reported version number, the version of JetBrains TeamCity running on the remote host is a version prior to 2024.3.1. It is, therefore, affected by multiple vulnerabilities: - several stored XSS in the available updates page are possible. CVE-2024-35300 - Commit status...
CVE-2024-35300
CVE-2024-35300 concerns JetBrains TeamCity. Affected: TeamCity versions 2024.03 through 2024.03.1. Issue: several stored XSS vulnerabilities on the available updates page, arising from inadequate filtering/escaping of user-supplied data. Impact: the vulnerability enables execution of arbitrary sc...