Search
Search Results (354347 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-49371 | 1 Jetbrains | 1 Teamcity | 2026-05-29 | 7.1 High |
| In JetBrains TeamCity before 2026.1.1 reflected XSS in the keyword filter was possible | ||||
| CVE-2026-49378 | 1 Jetbrains | 1 Teamcity | 2026-05-29 | 4.3 Medium |
| In JetBrains TeamCity before 2026.1 credentials parameters were exposed via parameter autocompletion | ||||
| CVE-2018-25382 | 2 Bylancer, Zechat Project | 2 Zechat, Zechat | 2026-05-29 | 8.2 High |
| Zechat 1.5 contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information by injecting SQL code through the uname parameter. Attackers can send crafted requests to profile.php with UNION-based SQL injection payloads to retrieve table names, column names, and sensitive data from the information_schema database. | ||||
| CVE-2026-49380 | 1 Jetbrains | 1 Teamcity | 2026-05-29 | 3.1 Low |
| In JetBrains TeamCity before 2026.1 open redirect in the SAML plugin was possible | ||||
| CVE-2026-49383 | 1 Jetbrains | 1 Intellij Idea | 2026-05-29 | 3.3 Low |
| In JetBrains IntelliJ IDEA before 2026.1 xXE in the UI Designer form parser was possible | ||||
| CVE-2026-49384 | 1 Jetbrains | 1 Pycharm | 2026-05-29 | 6.1 Medium |
| In JetBrains PyCharm before 2025.3.4 stored XSS in Jupyter notebook Markdown cells was possible | ||||
| CVE-2026-49386 | 1 Jetbrains | 1 Youtrack | 2026-05-29 | 6.5 Medium |
| In JetBrains YouTrack before 2026.1.13570 improper access control allowed enumeration of restricted issues and articles on Planning Canvas | ||||
| CVE-2026-49373 | 1 Jetbrains | 1 Teamcity | 2026-05-29 | 7.1 High |
| In JetBrains TeamCity before 2026.1 remote code execution was possible via Perforce connection settings | ||||
| CVE-2026-49367 | 1 Jetbrains | 1 Intellij Idea | 2026-05-29 | 8 High |
| In JetBrains IntelliJ IDEA before 2026.1.1 command execution was possible via the guest user account | ||||
| CVE-2026-49366 | 1 Jetbrains | 1 Intellij Idea | 2026-05-29 | 7.8 High |
| In JetBrains IntelliJ IDEA before 2026.1.1 command injection was possible via filename completion | ||||
| CVE-2026-49385 | 1 Jetbrains | 1 Youtrack | 2026-05-29 | 6.5 Medium |
| In JetBrains YouTrack before 2026.1.13570 improper access control allowed low-privileged users to modify service accounts | ||||
| CVE-2026-49382 | 1 Jetbrains | 1 Intellij Idea | 2026-05-29 | 4.5 Medium |
| In JetBrains IntelliJ IDEA before 2026.1 code execution was possible via template injection in the Copyright plugin | ||||
| CVE-2026-49374 | 1 Jetbrains | 1 Teamcity | 2026-05-29 | 7.6 High |
| In JetBrains TeamCity before 2026.1 improper permission checks exposed build configuration parameters | ||||
| CVE-2026-49369 | 1 Jetbrains | 1 Youtrack | 2026-05-29 | 4.3 Medium |
| In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on Users and Groups pages | ||||
| CVE-2026-49381 | 1 Jetbrains | 1 Teamcity | 2026-05-29 | 3.4 Low |
| In JetBrains TeamCity before 2026.1 stored XSS on the SAML login page was possible | ||||
| CVE-2026-49376 | 1 Jetbrains | 1 Teamcity | 2026-05-29 | 6.5 Medium |
| In JetBrains TeamCity before 2026.1 insufficient username validation in the SAML plugin | ||||
| CVE-2026-49372 | 1 Jetbrains | 1 Teamcity | 2026-05-29 | 7.5 High |
| In JetBrains TeamCity before 2026.1, 2025.11.5 unauthenticated SSRF via build status was possible | ||||
| CVE-2026-49370 | 1 Jetbrains | 1 Youtrack | 2026-05-29 | 3.4 Low |
| In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on fetchApp requests | ||||
| CVE-2026-49368 | 1 Jetbrains | 1 Youtrack | 2026-05-29 | 8.7 High |
| In JetBrains YouTrack before 2026.1.13162 stored XSS in project notification templates was possible | ||||
| CVE-2021-4019 | 5 Debian, Fedoraproject, Neovim and 2 more | 5 Debian Linux, Fedora, Neovim and 2 more | 2026-05-29 | 7.8 High |
| vim is vulnerable to Heap-based Buffer Overflow | ||||