Security Vulnerabilities
In JetBrains IntelliJ IDEA before 2026.1 code execution was possible via template injection in the Copyright plugin
CVSS Score
4.5
EPSS Score
0.0
Published
2026-05-29
In JetBrains IntelliJ IDEA before 2026.1 xXE in the UI Designer form parser was possible
CVSS Score
3.3
EPSS Score
0.0
Published
2026-05-29
In JetBrains PyCharm before 2025.3.4 stored XSS in Jupyter notebook Markdown cells was possible
CVSS Score
6.1
EPSS Score
0.001
Published
2026-05-29
In JetBrains YouTrack before 2026.1.13570 improper access control allowed low-privileged users to modify service accounts
CVSS Score
6.5
EPSS Score
0.0
Published
2026-05-29
In JetBrains YouTrack before 2026.1.13570 improper access control allowed enumeration of restricted issues and articles on Planning Canvas
CVSS Score
6.5
EPSS Score
0.0
Published
2026-05-29
In JetBrains TeamCity before 2026.1,
2025.11.5 unauthenticated SSRF via build status was possible
CVSS Score
7.5
EPSS Score
0.0
Published
2026-05-29
In JetBrains TeamCity before 2026.1 remote code execution was possible via Perforce connection settings
CVSS Score
7.1
EPSS Score
0.0
Published
2026-05-29
In JetBrains TeamCity before 2026.1 improper permission checks exposed build configuration parameters
CVSS Score
7.6
EPSS Score
0.0
Published
2026-05-29
In JetBrains TeamCity before 2026.1,
2025.11.5 reflected XSS was possible on the repository download page
CVSS Score
6.1
EPSS Score
0.001
Published
2026-05-29
In JetBrains TeamCity before 2026.1 insufficient username validation in the SAML plugin
CVSS Score
6.5
EPSS Score
0.0
Published
2026-05-29