Vulnerabilities > Jetbrains > Youtrack > 2019.1.50916
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-02 | CVE-2019-14956 | Improper Preservation of Permissions vulnerability in Jetbrains Youtrack JetBrains YouTrack before 2019.2.53938 was using incorrect settings, allowing a user without necessary permissions to get other project names. | 4.0 |
| 2019-10-01 | CVE-2019-15041 | Open Redirect vulnerability in Jetbrains Youtrack JetBrains YouTrack versions before 2019.1.52545 allowed unbounded URL whitelisting because of Inclusion of Functionality from an Untrusted Control Sphere. | 5.8 |
| 2019-10-01 | CVE-2019-14953 | Cross-site Scripting vulnerability in Jetbrains Youtrack JetBrains YouTrack versions before 2019.2.53938 had a possible XSS through issue attachments when using the Firefox browser. | 4.3 |
| 2019-10-01 | CVE-2019-14952 | Cross-site Scripting vulnerability in Jetbrains Youtrack JetBrains YouTrack versions before 2019.1.52584 had a possible XSS in the issue titles. | 4.3 |