Page 2 of 28 results (0.020 seconds)

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0

In JetBrains TeamCity before 2024.07.1 reflected XSS was possible in the AWS Core plugin • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 0

In JetBrains TeamCity before 2024.07.1 reflected XSS was possible on the agentPushPreset page • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 3.7EPSS: 0%CPEs: 1EXPL: 0

In JetBrains TeamCity before 2024.07.1 self XSS was possible in the HashiCorp Vault plugin • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0

In JetBrains TeamCity before 2024.07.1 multiple stored XSS was possible on Clouds page • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

In JetBrains TeamCity before 2024.07.1 possible privilege escalation due to incorrect directory permissions • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-276: Incorrect Default Permissions •