Page 9 of 91 results (0.008 seconds)

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0

JetBrains YouTrack before 2021.3.23639 is vulnerable to Host header injection. JetBrains YouTrack versiones anteriores a 2021.3.23639, es vulnerable a una inyección de encabezados de Host • https://blog.jetbrains.com/blog/2021/11/08/jetbrains-security-bulletin-q3-2021 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •

CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0

JetBrains YouTrack before 2021.3.24402 is vulnerable to stored XSS. JetBrains YouTrack versiones anteriores a 2021.3.24402, es vulnerable a un ataque de tipo XSS almacenado • https://blog.jetbrains.com/blog/2021/11/08/jetbrains-security-bulletin-q3-2021 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

In JetBrains YouTrack before 2021.3.21051, a user could see boards without having corresponding permissions. En JetBrains YouTrack versiones anteriores a 2021.3.21051, un usuario podía visualizar tableros sin tener los permisos correspondientes • https://blog.jetbrains.com/blog/2021/08/05/jetbrains-security-bulletin-q2-2021 •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

In JetBrains YouTrack before 2021.2.16363, an insecure PRNG was used. En JetBrains YouTrack versiones anteriores a 2021.2.16363, era usado un PRNG no seguro • https://blog.jetbrains.com/blog/2021/08/05/jetbrains-security-bulletin-q2-2021 • CWE-338: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) •

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0

In JetBrains YouTrack before 2021.2.16363, system user passwords were hashed with SHA-256. En JetBrains YouTrack versiones anteriores a 2021.2.16363, unas contraseñas de usuarios del sistema estaban cifradas con SHA-256 • https://blog.jetbrains.com/blog/2021/08/05/jetbrains-security-bulletin-q2-2021 • CWE-916: Use of Password Hash With Insufficient Computational Effort •