Search Results | AttackerKB

100 Total Results

Displaying 61-70 of 100

Attacker Value

Unknown

CVE-2021-25766

Disclosure Date: February 03, 2021 (last updated November 28, 2024)

In JetBrains YouTrack before 2020.4.4701, improper resource access checks were made.

Attacker Value

Unknown

CVE-2021-25771

Disclosure Date: February 03, 2021 (last updated November 28, 2024)

In JetBrains YouTrack before 2020.6.1099, project information could be potentially disclosed.

Attack Vector: Network Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2021-25770

Disclosure Date: February 03, 2021 (last updated February 22, 2025)

In JetBrains YouTrack before 2020.5.3123, server-side template injection (SSTI) was possible, which could lead to code execution.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2021-25767

Disclosure Date: February 03, 2021 (last updated November 28, 2024)

In JetBrains YouTrack before 2020.6.1767, an issue's existence could be disclosed via YouTrack command execution.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2021-25769

Disclosure Date: February 03, 2021 (last updated November 28, 2024)

In JetBrains YouTrack before 2020.4.6808, the YouTrack administrator wasn't able to access attachments.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2021-25768

Disclosure Date: February 03, 2021 (last updated February 22, 2025)

In JetBrains YouTrack before 2020.4.4701, permissions for attachments actions were checked improperly.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2021-25765

Disclosure Date: February 03, 2021 (last updated February 22, 2025)

In JetBrains YouTrack before 2020.4.4701, CSRF via attachment upload was possible.

Attack Vector: Network Privileges: None User Interaction: Required

Attacker Value

Unknown

CVE-2020-25208

Disclosure Date: February 03, 2021 (last updated February 22, 2025)

In JetBrains YouTrack before 2020.4.4701, an attacker could enumerate users via the REST API without appropriate permissions.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2020-27625

Disclosure Date: November 16, 2020 (last updated November 28, 2024)

In JetBrains YouTrack before 2020.3.888, notifications might have mentioned inaccessible issues.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2020-27626

Disclosure Date: November 16, 2020 (last updated February 22, 2025)

JetBrains YouTrack before 2020.3.5333 was vulnerable to SSRF.

Attack Vector: Network Privileges: None User Interaction: None

100 Total Results

Displaying 61-70 of 100

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Quick Cookie Notification