Lucene search
K

4676 matches found

Nuclei
Nuclei
added 3 days ago222 views

JetBrains TeamCity > 2023.11.3 - Authentication Bypass

In JetBrains TeamCity before 2023.11.3 authentication bypass leading to RCE was possible id: CVE-2024-23917 info: name: JetBrains TeamCity 2023.11.3 - Authentication Bypass author: iamnoooob,rootxharsh,pdresearch severity: critical description: | In JetBrains TeamCity before 2023.11.3...

9.8CVSS7.6AI score0.5373EPSS
Exploits0References2
EUVD
EUVD
added 6 days ago6 views

EUVD-2026-39654

In JetBrains YouTrack before 2026.2.16593 project settings disclosure via the MCP was possible...

3.1CVSS5.8AI score0.00143EPSS
Exploits0References2
EUVD
EUVD
added 6 days ago6 views

EUVD-2026-39657

In JetBrains YouTrack before 2026.2.16593 improper access control allowed reading saved queries and tags...

4.3CVSS5.8AI score0.00167EPSS
Exploits0References2
NVD
NVD
added 6 days ago7 views

CVE-2026-57923

In JetBrains YouTrack before 2026.2.16593 improper authorisation in the app configurations endpoint allowed modifying project settings...

7.5CVSS0.00159EPSS
Exploits0References1
NVD
NVD
added 6 days ago6 views

CVE-2026-57924

In JetBrains YouTrack before 2026.2.16593 default role configuration exposed excessive user profile details...

5.3CVSS0.00167EPSS
Exploits0References1
NVD
NVD
added 6 days ago8 views

CVE-2026-57925

In JetBrains YouTrack before 2026.2.16593 improper access control allowed reading saved queries and tags...

5.3CVSS0.00167EPSS
Exploits0References1
NVD
NVD
added 6 days ago7 views

CVE-2026-57926

In JetBrains YouTrack before 2026.2.16593 the websandbox bridge was vulnerable to a prototype pollution attack...

9.8CVSS0.00178EPSS
Exploits0References1
NVD
NVD
added 6 days ago6 views

CVE-2026-57921

In JetBrains YouTrack before 2026.2.16593 improper access control allowed reading users' private data via the comment templates endpoint...

7.5CVSS0.00177EPSS
Exploits0References1
NVD
NVD
added 6 days ago9 views

CVE-2026-57922

In JetBrains YouTrack before 2026.2.16593 project settings disclosure via the MCP was possible...

5.3CVSS0.00143EPSS
Exploits0References1
NVD
NVD
added 6 days ago7 views

CVE-2026-53914

In JetBrains Kotlin before 2.4.20 code execution was possible via unsafe deserialization in the build cache metadata...

9.8CVSS0.00196EPSS
Exploits0References1
CVE
CVE
added 6 days ago47 views

CVE-2026-53914

CVE-2026-53914 affects JetBrains Kotlin prior to 2.4.20, where unsafe deserialization in the build cache metadata allows code execution. The NVD notes a high-severity, network-vector vulnerability with critical impact to confidentiality, integrity, and availability; local context in CVSS from CNA...

9.8CVSS6.2AI score0.00196EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 6 days ago36 views

CVE-2026-53914

In JetBrains Kotlin before 2.4.20 code execution was possible via unsafe deserialization in the build cache metadata...

6.7CVSS0.00196EPSS
Exploits0References1
CVE
CVE
added 6 days ago7 views

CVE-2026-57926

JetBrains YouTrack prior to 2026.2.16593 has a vulnerability in the websandbox bridge that enables prototype pollution. The issue affects YouTrack’s websandbox bridge component and is described as a prototype pollution attack, with the NVD noting a CVSSv3.1 base score of 9.8 (CRITICAL) under the ...

9.8CVSS5.8AI score0.00178EPSS
Exploits0References1Affected Software1
CVE
CVE
added 6 days ago19 views

CVE-2026-57925

JetBrains YouTrack before 2026.2.16593 has an improper access control vulnerability (CVE-2026-57925) that enables reading saved queries and tags. The root cause is access control weakness; attacker with network access and low privileges (CVSSv3.1: AV:N/AC:L/PR:L/UI:N/S:U) can access sensitive dat...

5.3CVSS5.8AI score0.00167EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 6 days ago36 views

CVE-2026-57925

In JetBrains YouTrack before 2026.2.16593 improper access control allowed reading saved queries and tags...

4.3CVSS0.00167EPSS
Exploits0References1
Cvelist
Cvelist
added 6 days ago36 views

CVE-2026-57924

In JetBrains YouTrack before 2026.2.16593 default role configuration exposed excessive user profile details...

4.3CVSS0.00167EPSS
Exploits0References1
CVE
CVE
added 6 days ago17 views

CVE-2026-57924

CVE-2026-57924 affects JetBrains YouTrack prior to version 2026.2.16593, where a default role configuration exposed excessive user profile details. The root cause is not fully described beyond this exposure, but the impact implies potential disclosure of user profile information to unauthorized u...

5.3CVSS5.8AI score0.00167EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 6 days ago35 views

CVE-2026-57921

In JetBrains YouTrack before 2026.2.16593 improper access control allowed reading users' private data via the comment templates endpoint...

4.3CVSS0.00177EPSS
Exploits0References1
CVE
CVE
added 6 days ago18 views

CVE-2026-57922

CVE-2026-57922 affects JetBrains YouTrack prior to version 2026.2.16593, where project settings could be disclosed via MCP. The vulnerability is described as a disclosure of project settings, with no exploitation details provided. The documents imply a fix in version 2026.2.16593, but do not prov...

5.3CVSS5.8AI score0.00143EPSS
Exploits0References1Affected Software1
CVE
CVE
added 6 days ago11 views

CVE-2026-57921

In JetBrains YouTrack prior to version 2026.2.16593, an improper access control flaw in the comment templates endpoint allowed reading users’ private data. Affected component: YouTrack server-side access control for comment templates; root cause is insufficient restrictions on who can retrieve te...

7.5CVSS5.8AI score0.00177EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder