Jetbrains: >> Hub >> 1.0.648 Security Vulnerabilities
In JetBrains Hub before 2024.3.55417 privilege escalation was possible via LDAP authentication mapping
CVSS Score
6.7
EPSS Score
0.0
Published
2025-01-21
In JetBrains Hub before 2024.3.47707 improper access control allowed users to generate permanent tokens for unauthorized services
CVSS Score
4.3
EPSS Score
0.0
Published
2024-10-28
In JetBrains Hub before 2024.2.34646 stored XSS via project description was possible
CVSS Score
3.5
EPSS Score
0.002
Published
2024-06-18
In JetBrains Hub before 2023.1.15725 SSRF protection in Auth Module integration was missing
CVSS Score
4.1
EPSS Score
0.0
Published
2023-04-24
In JetBrains Hub before 2022.3.15573, 2022.2.15572, 2022.1.15583 reflected XSS in dashboards was possible
CVSS Score
4.6
EPSS Score
0.0
Published
2023-03-27
In JetBrains Hub before 2022.3.15181 Throttling was missed when sending emails to a particular email address
CVSS Score
3.5
EPSS Score
0.0
Published
2022-11-18
In JetBrains Hub before 2022.2.14799, insufficient access control allowed the hijacking of untrusted services
CVSS Score
3.5
EPSS Score
0.0
Published
2022-07-01
In JetBrains Hub before 2022.1.14638 stored XSS via project icon was possible.
CVSS Score
6.1
EPSS Score
0.0
Published
2022-04-28
JetBrains Hub before 2021.1.14276 was vulnerable to reflected XSS.
CVSS Score
6.1
EPSS Score
0.0
Published
2022-02-25
JetBrains Hub before 2021.1.14276 was vulnerable to blind Server-Side Request Forgery (SSRF).
CVSS Score
9.1
EPSS Score
0.001
Published
2022-02-25
Page 1