CVE-2024-38507 | JetBrains Hub up to 2023.1.15725 Project Description cross site scripting

Inserito da Angelo Barbosa | Giu 18, 2024 | CVE

A vulnerability, which was classified as problematic, was found in JetBrains Hub. Affected is an unknown function. The manipulation of the argument Project Description leads to cross site scripting.

This vulnerability is traded as CVE-2024-38507. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-38507 | JetBrains Hub up to 2023.1.15725 Project Description cross site scripting

Post correlati

CVE-2024-2827 | lakernote EasyAdmin up to 20240315 saveReportFile server-side request forgery (I98ZTA)

CVE-2023-46712 | Fortinet FortiPortal up to 7.0.6/7.2.1 HTTP Request access control (FG-IR-23-395)

CVE-2024-36600 | libcdio 2.1.0 ISO 9660 Image File buffer overflow

CVE-2024-37623 | Xinhu RockOA 2.6.3 tpl_kaoqin_locationchange.html cross site scripting