Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In JetBrains YouTrack before 2024.1.25893 creation comments on behalf of an arbitrary user in HelpDesk was possible
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
使用欺骗进行的认证绕过
Vulnerability Title
JetBrains YouTrack 安全漏洞
Vulnerability Description
JetBrains YouTrack是捷克JetBrains公司的一套基于浏览器的错误跟踪和项目管理软件。该软件具有错误跟踪、创建工作流程和监控项目进度等功能。 JetBrains YouTrack 2024.1.25893 之前版本存在安全漏洞,该漏洞源于攻击者可以代表 HelpDesk 中的任意用户创建评论。
CVSS Information
N/A
Vulnerability Type
N/A