CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2019-12844
https://notcve.org/view.php?id=CVE-2019-12844
03 Jul 2019 — A possible stored JavaScript injection was detected on one of the JetBrains TeamCity pages. The issue was fixed in TeamCity 2018.2.3. Se detectó una posible inyección de JavaScript almacenada en una de las páginas TeamBity de JetBrains. El problema se solucionó en TeamCity 03.02.2018. • https://blog.jetbrains.com/blog/2019/06/19/jetbrains-security-bulletin-q1-2019 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2014-10036
https://notcve.org/view.php?id=CVE-2014-10036
13 Jan 2015 — Cross-site scripting (XSS) vulnerability in JetBrains TeamCity before 8.1 allows remote attackers to inject arbitrary web script or HTML via the cameFromUrl parameter to feed/generateFeedUrl.html. Vulnerabilidad de XSS en JetBrains TeamCity anterior a 8.1 permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través del parámetro cameFromUrl en feed/generateFeedUrl.html. • http://confluence.jetbrains.com/display/TCD8/What%27s+New+in+TeamCity+8.1 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-10002
https://notcve.org/view.php?id=CVE-2014-10002
13 Jan 2015 — Unspecified vulnerability in JetBrains TeamCity before 8.1 allows remote attackers to obtain sensitive information via unknown vectors. Vulnerabilidad no especificada en JetBrains TeamCity anterior a 8.1 permite a atacantes remotos obtener información sensible a través de vectores desconocidos. • http://confluence.jetbrains.com/display/TCD8/What%27s+New+in+TeamCity+8.1 •