EUVD-2025-15873

Malicious code in bioql PyPI...

JetBrains YouTrack Access Control Error Vulnerability

JetBrains YouTrack is a project management tool developed by JetBrains that supports cloud hosting and local deployment. JetBrains YouTrack suffers from an Access Control Error vulnerability that stems from the disclosure of restricted attachments during a cloning issue, which can be exploited by...

CVE-2025-47850

In JetBrains YouTrack before 2025.1.74704 restricted attachments could become visible after issue cloning...

CVE-2025-47850

In JetBrains YouTrack before 2025.1.74704 restricted attachments could become visible after issue cloning...

CVE-2025-47850

In JetBrains YouTrack before 2025.1.74704 restricted attachments could become visible after issue cloning...

CVE-2025-47850

CVE-2025-47850 affects JetBrains YouTrack prior to 2025.1.74704, where restricted attachments could become visible after cloning an issue. The linked PT-security note specifies versions prior to 2025.1.74704 as affected and recommends upgrading to 2025.1.74704 or newer to resolve the issue. The N...

CVE-2025-47850

In JetBrains YouTrack before 2025.1.74704 restricted attachments could become visible after issue cloning...

CVE-2025-47850

In JetBrains YouTrack before 2025.1.74704 restricted attachments could become visible after issue cloning...

PT-2025-22279 · Jetbrains · Youtrack

Name of the Vulnerable Software and Affected Versions: JetBrains YouTrack versions prior to 2025.1.74704 Description: The issue concerns restricted attachments becoming visible after issue cloning. Recommendations: For versions prior to 2025.1.74704, update to version 2025.1.74704 or later to...

JetBrains YouTrack 访问控制错误漏洞

JetBrains YouTrack is a project management tool developed by JetBrains that supports cloud hosting and local deployment. JetBrains YouTrack suffers from an Access Control Error vulnerability that stems from the disclosure of restricted attachments during a cloning issue, which can be exploited by...

CVE-2024-30263 The PDF Viewer macro can be used to view PDF attachments with restricted access

macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. Users with edit rights can access restricted PDF attachments using the PDF Viewer macro, just by passing the attachment URL as the value of the file parameter. Users with view rights can access restricted PDF attachments if the...

PDF Viewer Macro 安全漏洞

PDF Viewer Macro is an open source macro for XWiki SAS. It allows viewing PDF files attached to XWiki pages from within the XWiki page. A security vulnerability exists in PDF Viewer Macro 2.5 and earlier versions, which stems from the fact that a user with editing privileges can use the PDF Viewe...

PT-2024-23306 · Mozilla · Pdf.Js

Name of the Vulnerable Software and Affected Versions: macro-pdfviewer versions prior to 2.5.1 Description: The macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. Users with edit rights can access restricted PDF attachments using the PDF Viewer macro by passing the attachment U...