Vulnerabilities > Jetbrains > Teamcity > 2024.12.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-20 | CVE-2025-47851 | Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2025.03.2 stored XSS via GitHub Checks Webhook was possible | 5.4 |
| 2025-05-20 | CVE-2025-47852 | Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2025.03.2 stored XSS via YouTrack integration was possible | 5.4 |
| 2025-05-20 | CVE-2025-47853 | Cross-site Scripting vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2025.03.2 stored XSS via Jira integration was possible | 5.4 |
| 2025-05-20 | CVE-2025-47854 | Open Redirect vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2025.03.2 open redirect was possible on editing VCS Root page | 6.1 |
| 2025-01-21 | CVE-2025-24461 | Missing Authorization vulnerability in Jetbrains Teamcity 2024.12.1 In JetBrains TeamCity before 2024.12.1 decryption of connection secrets without proper permissions was possible via Test Connection endpoint | 6.5 |