Known vulnerabilities in JetBrains s.r.o. YouTrack

Vendor: JetBrains s.r.o.
Website: https://www.jetbrains.com/
Total Security Bulletins: 29

Security bulletins (29)

Secuity bulletin Severity Status Published
SB2026022545: Missing authorization in JetBrains YouTrack Medium
Patched
25.02.2026
SB2026020942: Information disclosure via mailbox logs in JetBrains YouTrack Medium
Patched
09.02.2026
SB2025111101: Multiple vulnerabilities in JetBrains YouTrack High
Patched
11.11.2025
SB2025082218: Stored XSS in JetBrains YouTrack Low
Patched
22.08.2025
SB2025072961: Clickjacking attack in JetBrains YouTrack Low
Patched
29.07.2025
SB2021121606: Remote code execution in YouTrack (Apache Log4j component) Critical
Patched Exploited
16.12.2021
SB2021110821: Stored cross-site scripting in JetBrains YouTrack Medium
Patched
08.11.2021
SB2021110820: Host header injection in YouTrack Medium
Patched
08.11.2021
SB2021110819: Stored cross-site scripting in YouTrack Low
Patched
08.11.2021
SB2021080522: Improper access control in JetBrains YouTrack Low
Patched
05.08.2021
SB2021080521: Stored cross-site scripting in JetBrains YouTrack Low
Patched
05.08.2021
SB2021080520: Multiple vulnerabilities in JetBrains YouTrack Low
Patched
05.08.2021
SB2021080519: Security restrictions bypass in JetBrains YouTrack Medium
Patched
05.08.2021
SB2020090124: Information disclosure in JetBrains YouTrack Medium
Patched Public exploit
01.09.2020
SB2020090121: Information disclosure in JetBrains YouTrack Medium
Patched Public exploit
01.09.2020
SB2020080810: Multiple vulnerabilities in JetBrains YouTrack Medium
Patched
08.08.2020
SB2020080811: Information disclosure in JetBrains YouTrack Medium
Patched
08.08.2020
SB2020080812: Server-Side Request Forgery (SSRF) in JetBrains YouTrack Medium
Patched
08.08.2020
SB2020080813: Server-Side Request Forgery (SSRF) in JetBrains YouTrack Medium
Patched Public exploit
08.08.2020
SB2020080814: Remote code execution in JetBrains YouTrack Medium
Patched
08.08.2020


Showing elements 1 - 20 out of 29