First published: Fri Feb 25 2022(Updated: )
JetBrains YouTrack before 2021.4.36872 was vulnerable to stored XSS via a project icon.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Jetbrains Youtrack | <2021.4.36872 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for the stored XSS vulnerability in JetBrains YouTrack is CVE-2022-24347.
The severity rating of CVE-2022-24347 is medium (5.4).
The stored XSS vulnerability in JetBrains YouTrack can be exploited via a project icon.
JetBrains YouTrack versions up to and excluding 2021.4.36872 are affected by CVE-2022-24347.
Yes, a fix for the stored XSS vulnerability in JetBrains YouTrack is available in version 2021.4.36872 and later.