JetBrains YouTrack Access Control Improperly Implemented Vulnerability

YouTrack is a keyboard-based issue and project tracking tool from the Czech company JetBrains, primarily used for tracking tasks and defect correction arrangements during development. JetBrains YouTrack versions prior to 2020.6.6600 are vulnerable to an improper implementation of access control...

CVE-2021-31902

Summary of CVE-2021-31902: JetBrains YouTrack versions prior to 2020.6.6600 are affected by improper access control during the exporting of issues. The Red Hat/CNVD entries and the JetBrains Security Bulletin Q1 2021 corroborate that the vulnerability is tied to YouTrack and was addressed by a fi...

JetBrains YouTrack 安全漏洞

YouTrack is a keyboard-based issue and project tracking tool from the Czech company JetBrains, primarily used for tracking tasks and defect correction arrangements during development. JetBrains YouTrack versions prior to 2020.6.6600 are vulnerable to an improper implementation of access control...

XSS Vulnerability in JIRA Issue Export

A search endpoint is vulnerable to an XSS injection in certain cases. Normally, the browser will urlencode its requests, but some proxy servers and load balancers will decode URL data by default. see http://stackoverflow.com/questions/31266629/nginx-encoding-normalizing-part-of-uri...