First published: Tue Oct 01 2019(Updated: )
JetBrains YouTrack versions before 2019.1.52584 had a possible XSS in the issue titles.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Jetbrains Youtrack | <2019.1.52584 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-14952 is a vulnerability in JetBrains YouTrack versions before 2019.1.52584 that allows for possible cross-site scripting (XSS) in the issue titles.
CVE-2019-14952 has a severity rating of 6.1, which is considered medium.
CVE-2019-14952 allows an attacker to potentially execute malicious scripts through issue titles, posing a risk of cross-site scripting (XSS) attacks on JetBrains YouTrack before version 2019.1.52584.
To fix CVE-2019-14952, you should update JetBrains YouTrack to version 2019.1.52584 or later.
You can find more information about CVE-2019-14952 in the JetBrains Security Bulletin Q2 2019: https://blog.jetbrains.com/blog/2019/09/26/jetbrains-security-bulletin-q2-2019/