First published: Tue Apr 05 2022(Updated: )
In JetBrains YouTrack before 2022.1.43563 HTML code from the issue description was being rendered
Credit: security@jetbrains.com
Affected Software | Affected Version | How to fix |
---|---|---|
Jetbrains Youtrack | <2022.1.43563 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2022-28648.
JetBrains YouTrack before version 2022.1.43563 is affected by this vulnerability.
The severity of CVE-2022-28648 is medium with a CVSS score of 5.4.
In JetBrains YouTrack before 2022.1.43563, HTML code from the issue description is being rendered.
To fix CVE-2022-28648, update JetBrains YouTrack to version 2022.1.43563 or later.