Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
JetbrainsHub

7 matches found

CVE
CVEadded 2019/10/01 4:15 p.m.67 views

CVE-2019-14955

In JetBrains Hub versions earlier than 2018.4.11436, there was no option to force a user to change the password and no password expiration policy was implemented.

5.3CVSS5.3AI score0.00003EPSS
CVE
CVEadded 2022/07/01 10:15 a.m.59 views

CVE-2022-34894

In JetBrains Hub before 2022.2.14799, insufficient access control allowed the hijacking of untrusted services

5.3CVSS5.3AI score0.00002EPSS
CVE
CVEadded 2023/03/27 4:15 p.m.48 views

CVE-2022-48429

In JetBrains Hub before 2022.3.15573, 2022.2.15572, 2022.1.15583 reflected XSS in dashboards was possible

5.4CVSS5.2AI score0.0002EPSS
CVE
CVEadded 2021/02/03 4:15 p.m.41 views

CVE-2021-25760

In JetBrains Hub before 2020.1.12669, information disclosure via the public API was possible.

5.3CVSS5.1AI score0.00003EPSS
CVE
CVEadded 2019/10/31 3:15 p.m.39 views

CVE-2019-18360

In JetBrains Hub versions earlier than 2019.1.11738, username enumeration was possible through password recovery.

5.3CVSS5.4AI score0.00003EPSS
CVE
CVEadded 2024/06/18 11:15 a.m.38 views

CVE-2024-38507

In JetBrains Hub before 2024.2.34646 stored XSS via project description was possible

5.4CVSS3.8AI score0.00086EPSS
CVE
CVEadded 2024/10/28 1:15 p.m.36 views

CVE-2024-50573

In JetBrains Hub before 2024.3.47707 improper access control allowed users to generate permanent tokens for unauthorized services

5.4CVSS6.9AI score0.00002EPSS