Vulnerabilities > Jetbrains
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-24 | CVE-2022-48477 | Unspecified vulnerability in Jetbrains HUB In JetBrains Hub before 2023.1.15725 SSRF protection in Auth Module integration was missing | 9.8 |
| 2023-04-04 | CVE-2022-48435 | Unspecified vulnerability in Jetbrains PHPstorm 2021.3.1 In JetBrains PhpStorm before 2023.1 source code could be logged in the local idea.log file | 3.3 |
| 2023-03-29 | CVE-2022-48430 | Unspecified vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2023.1 file content could be disclosed via an external stylesheet path in Markdown preview. | 7.5 |
| 2023-03-29 | CVE-2022-48431 | Insufficient Verification of Data Authenticity vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2023.1 in some cases, Gradle and Maven projects could be imported without the “Trust Project” confirmation. | 7.8 |
| 2023-03-29 | CVE-2022-48432 | Insecure Default Initialization of Resource vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2023.1 the bundled version of Chromium wasn't sandboxed. | 8.8 |
| 2023-03-29 | CVE-2022-48433 | Insufficiently Protected Credentials vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2023.1 the NTLM hash could leak through an API method used in the IntelliJ IDEA built-in web server. | 7.5 |
| 2023-03-27 | CVE-2022-48427 | Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.10.3 stored XSS on “Pending changes” and “Changes” tabs was possible | 5.4 |
| 2023-03-27 | CVE-2022-48428 | Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.10.3 stored XSS on the SSH keys page was possible | 5.4 |
| 2023-03-27 | CVE-2022-48426 | Cross-site Scripting vulnerability in Jetbrains Teamcity 2022.10.3 In JetBrains TeamCity before 2022.10.3 stored XSS in Perforce connection settings was possible | 5.4 |
| 2023-03-27 | CVE-2022-48429 | Cross-site Scripting vulnerability in Jetbrains HUB In JetBrains Hub before 2022.3.15573, 2022.2.15572, 2022.1.15583 reflected XSS in dashboards was possible | 5.4 |