Vulnerabilities > Jetbrains

DATE	CVE	VULNERABILITY TITLE	RISK
2024-05-29	CVE-2024-36362	Path Traversal vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5, 2024.03.2 path traversal allowing to read files from server was possible network low complexity jetbrains CWE-22	6.5
2024-05-29	CVE-2024-36363	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 several Stored XSS in code inspection reports were possible network low complexity jetbrains CWE-79	5.4
2024-05-29	CVE-2024-36364	Incorrect Authorization vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 improper access control in Pull Requests and Commit status publisher build features was possible network low complexity jetbrains CWE-863	6.5
2024-05-29	CVE-2024-36365	Incorrect Authorization vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5, 2024.03.2 a third-party agent could impersonate a cloud agent network low complexity jetbrains CWE-863	8.1
2024-05-29	CVE-2024-36366	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 an XSS could be executed via certain report grouping and filtering operations network low complexity jetbrains CWE-79	6.1
2024-05-29	CVE-2024-36367	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 stored XSS via third-party reports was possible network low complexity jetbrains CWE-79	6.1
2024-05-29	CVE-2024-36368	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 reflected XSS via OAuth provider configuration was possible network low complexity jetbrains CWE-79	5.4
2024-05-29	CVE-2024-36369	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 stored XSS via issue tracker integration was possible network low complexity jetbrains CWE-79	5.4
2024-05-29	CVE-2024-36370	Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 stored XSS via OAuth connection settings was possible network low complexity jetbrains CWE-79	5.4
2024-05-16	CVE-2024-35300	Cross-site Scripting vulnerability in Jetbrains Teamcity 2024.03 In JetBrains TeamCity between 2024.03 and 2024.03.1 several stored XSS in the available updates page were possible network low complexity jetbrains CWE-79	6.1

Vulnerabilities > Jetbrains {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Jetbrains"}]}

Vulnerabilities > Jetbrains