Vulnerabilities > Jetbrains > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-08-06 | CVE-2021-37552 | Cross-site Scripting vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2021.2.17925, stored XSS was possible. | 5.4 |
2021-08-06 | CVE-2021-37554 | Unspecified vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2021.3.21051, a user could see boards without having corresponding permissions. | 4.3 |
2021-05-11 | CVE-2021-31911 | Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2020.2.3, reflected XSS was possible on several pages. | 6.1 |
2021-05-11 | CVE-2021-27733 | Cross-site Scripting vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2020.6.6441, stored XSS was possible via an issue attachment. | 5.4 |
2021-05-11 | CVE-2021-31900 | Unspecified vulnerability in Jetbrains Code With ME In JetBrains Code With Me bundled to the compatible IDE versions before 2021.1, a client could open a browser on a host. | 5.3 |
2021-05-11 | CVE-2021-31903 | Cross-site Scripting vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2021.1.9819, a pull request's title was sanitized insufficiently, leading to XSS. | 6.1 |
2021-05-11 | CVE-2021-31904 | Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2020.2.2, XSS was potentially possible on the test history page. | 6.1 |
2021-05-11 | CVE-2021-31907 | Incorrect Permission Assignment for Critical Resource vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2020.2.2, permission checks for changing TeamCity plugins were implemented improperly. | 5.3 |
2021-05-11 | CVE-2021-31908 | Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2020.2.3, stored XSS was possible on several pages. | 5.4 |
2021-05-11 | CVE-2021-3315 | Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2020.2.2, stored XSS on a tests page was possible. | 5.4 |