Security Vulnerabilities
In JetBrains TeamCity before 2025.11.2 exposure of sensitive data via default agent parameters
CVSS Score
4.3
EPSS Score
0.0
Published
2026-05-29
In JetBrains TeamCity before 2026.1 credentials parameters were exposed via parameter autocompletion
CVSS Score
4.3
EPSS Score
0.0
Published
2026-05-29
In JetBrains TeamCity before 2026.1 credentials could be exposed in thread names
CVSS Score
6.5
EPSS Score
0.0
Published
2026-05-29
In JetBrains TeamCity before 2026.1 open redirect in the SAML plugin was possible
CVSS Score
3.1
EPSS Score
0.0
Published
2026-05-29
In JetBrains IntelliJ IDEA before 2026.1.1 command injection was possible via filename completion
CVSS Score
7.8
EPSS Score
0.0
Published
2026-05-29
In JetBrains IntelliJ IDEA before 2026.1.1 command execution was possible via the guest user account
CVSS Score
8.0
EPSS Score
0.0
Published
2026-05-29
In JetBrains YouTrack before 2026.1.13162 stored XSS in project notification templates was possible
CVSS Score
8.7
EPSS Score
0.001
Published
2026-05-29
In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on Users and Groups pages
CVSS Score
4.3
EPSS Score
0.0
Published
2026-05-29
In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on fetchApp requests
CVSS Score
3.4
EPSS Score
0.0
Published
2026-05-29
In JetBrains TeamCity before 2026.1.1 reflected XSS in the keyword filter was possible
CVSS Score
7.1
EPSS Score
0.001
Published
2026-05-29