CVE-2020-15821 - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

In JetBrains YouTrack before 2020.2.6881, a user without permission is able to create an article draft.

Products	Youtrack
Type	Incorrect Default Permissions (CWE-276)
First patch	- None (likely due to unavailable code)
Links	• https://blog.jetbrains.com • https://blog.jetbrains.com/blog/2020/08/06/jetbrains-security-bulletin-q2-2020/