Vulnerabilidades em JetBrains
325 resultadosCVE-2017-8316—IntelliJ IDEA XML parser was found vulnerable to XML External Entity attack, an attacker can exploit the vulnerability by implementing malicEPSS 2.3%CVE-2025-47851MEDIUMIn JetBrains TeamCity before 2025.03.2 stored XSS via GitHub Checks Webhook was possibleEPSS 2.1%CVE-2022-36321MEDIUMIn JetBrains TeamCity before 2022.04.2 the private SSH key could be written to the build log in some casesEPSS 1.5%CVE-2024-47950LOWIn JetBrains TeamCity before 2024.07.3 stored XSS was possible in Backup configuration settingsEPSS 1.4%CVE-2024-47951LOWIn JetBrains TeamCity before 2024.07.3 stored XSS was possible via server global settingsEPSS 1.4%CVE-2023-39174MEDIUMIn JetBrains TeamCity before 2023.05.2 a ReDoS attack was possible via integration with issue trackersEPSS 1.4%CVE-2022-29927MEDIUMIn JetBrains TeamCity before 2022.04 reflected XSS on the Build Chain Status page was possibleEPSS 1.4%CVE-2022-28648MEDIUMIn JetBrains YouTrack before 2022.1.43563 HTML code from the issue description was being renderedEPSS 1.3%CVE-2023-34223MEDIUMIn JetBrains TeamCity before 2023.05 parameters of the "password" type from build dependencies could be logged in some casesEPSS 1.3%CVE-2023-38062MEDIUMIn JetBrains TeamCity before 2023.05.1 parameters of the "password" type could be shown in the UI in certain composite build configurationsEPSS 1.2%CVE-2023-34222MEDIUMIn JetBrains TeamCity before 2023.05 possible XSS in the Plugin Vendor URL was possibleEPSS 1.0%CVE-2023-34226MEDIUMIn JetBrains TeamCity before 2023.05 reflected XSS in the Subscriptions page was possibleEPSS 1.0%CVE-2023-34221MEDIUMIn JetBrains TeamCity before 2023.05 stored XSS in the Show Connection page was possibleEPSS 1.0%CVE-2023-34229MEDIUMIn JetBrains TeamCity before 2023.05 stored XSS in GitLab Connection page was possibleEPSS 1.0%CVE-2022-48427MEDIUMIn JetBrains TeamCity before 2022.10.3 stored XSS on “Pending changes” and “Changes” tabs was possibleEPSS 1.0%CVE-2022-48426MEDIUMIn JetBrains TeamCity before 2022.10.3 stored XSS in Perforce connection settings was possibleEPSS 1.0%CVE-2023-35054MEDIUMIn JetBrains YouTrack before 2023.1.10518 stored XSS in a Markdown-rendering engine was possibleEPSS 1.0%CVE-2025-52879MEDIUMIn JetBrains TeamCity before 2025.03.3 reflected XSS in the NPM Registry integration was possibleEPSS 0.9%CVE-2023-39175MEDIUMIn JetBrains TeamCity before 2023.05.2 reflected XSS via GitHub integration was possibleEPSS 0.9%CVE-2023-38066MEDIUMIn JetBrains TeamCity before 2023.05.1 reflected XSS via the Referer header was possible during artifact downloadsEPSS 0.9%