Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
JetbrainsYoutrack

18 matches found

CVE
CVEadded 2020/08/08 9:15 p.m.57 views

CVE-2020-15818

In JetBrains YouTrack before 2020.2.8527, the subtasks workflow could disclose issue existence.

5.3CVSS5.3AI score0.00003EPSS
CVE
CVEadded 2020/11/16 3:15 p.m.57 views

CVE-2020-27624

JetBrains YouTrack before 2020.3.888 was vulnerable to SSRF.

5.3CVSS5.3AI score0.00002EPSS
CVE
CVEadded 2020/08/08 9:15 p.m.56 views

CVE-2020-15823

JetBrains YouTrack before 2020.2.8873 is vulnerable to SSRF in the Workflow component.

7.5CVSS7.4AI score0.00003EPSS
CVE
CVEadded 2020/08/08 9:15 p.m.53 views

CVE-2020-15821

In JetBrains YouTrack before 2020.2.6881, a user without permission is able to create an article draft.

6.5CVSS6.4AI score0.00002EPSS
CVE
CVEadded 2020/08/08 9:15 p.m.51 views

CVE-2020-15819

JetBrains YouTrack before 2020.2.10643 was vulnerable to SSRF that allowed scanning internal ports.

5.3CVSS5.2AI score0.00002EPSS
CVE
CVEadded 2020/08/08 9:15 p.m.49 views

CVE-2020-15820

In JetBrains YouTrack before 2020.2.6881, the markdown parser could disclose hidden file existence.

5.3CVSS5.3AI score0.00003EPSS
CVE
CVEadded 2020/08/08 9:15 p.m.47 views

CVE-2020-15817

In JetBrains YouTrack before 2020.1.1331, an external user could execute commands against arbitrary issues.

8.8CVSS8.8AI score0.00008EPSS
CVE
CVEadded 2020/11/16 3:15 p.m.47 views

CVE-2020-25210

In JetBrains YouTrack before 2020.3.7955, an attacker could access workflow rules without appropriate access grants.

5.3CVSS5.3AI score0.00003EPSS
CVE
CVEadded 2020/01/30 6:15 p.m.44 views

CVE-2020-7912

In JetBrains YouTrack before 2019.2.59309, SMTP/Jabber settings could be accessed using backups.

5.3CVSS5.3AI score0.00003EPSS
CVE
CVEadded 2020/11/16 3:15 p.m.43 views

CVE-2020-24366

Sensitive information could be disclosed in the JetBrains YouTrack application before 2020.2.0 for Android via application backups.

3.3CVSS4AI score0.00001EPSS
CVE
CVEadded 2020/11/16 3:15 p.m.39 views

CVE-2020-27626

JetBrains YouTrack before 2020.3.5333 was vulnerable to SSRF.

5.3CVSS5.3AI score0.00002EPSS
CVE
CVEadded 2020/04/22 2:15 p.m.35 views

CVE-2020-11692

In JetBrains YouTrack before 2020.1.659, DB export was accessible to read-only administrators.

4CVSS4.1AI score0.00003EPSS
CVE
CVEadded 2020/10/19 7:15 p.m.35 views

CVE-2020-15822

In JetBrains YouTrack before 2020.2.10514, SSRF is possible because URL filtering can be escaped.

7.5CVSS7.2AI score0.00005EPSS
CVE
CVEadded 2020/11/16 3:15 p.m.35 views

CVE-2020-25209

In JetBrains YouTrack before 2020.3.6638, improper access control for some subresources leads to information disclosure via the REST API.

7.5CVSS7.2AI score0.00003EPSS
CVE
CVEadded 2020/04/22 2:15 p.m.32 views

CVE-2020-11693

JetBrains YouTrack before 2020.1.659 was vulnerable to DoS that could be caused by attaching a malformed TIFF file to an issue.

7.5CVSS7.4AI score0.00005EPSS
CVE
CVEadded 2020/01/30 6:15 p.m.32 views

CVE-2020-7913

JetBrains YouTrack 2019.2 before 2019.2.59309 was vulnerable to XSS via an issue description.

6.1CVSS5.9AI score0.00005EPSS
CVE
CVEadded 2020/08/27 8:15 p.m.31 views

CVE-2020-24618

In JetBrains YouTrack versions before 2020.3.4313, 2020.2.11008, 2020.1.11011, 2019.1.65514, 2019.2.65515, and 2019.3.65516, an attacker can retrieve an issue description without appropriate access.

6.5CVSS6.5AI score0.00004EPSS
CVE
CVEadded 2020/11/16 3:15 p.m.28 views

CVE-2020-27625

In JetBrains YouTrack before 2020.3.888, notifications might have mentioned inaccessible issues.

5.3CVSS5.3AI score0.00003EPSS