CVE-2020-15823 (NVD)

2020-08-08

JetBrains YouTrack before 2020.2.8873 is vulnerable to SSRF in the Workflow component.

Products Youtrack
Type Server-Side Request Forgery (SSRF) (CWE-918)
First patch - None (likely due to unavailable code)
Links https://blog.jetbrains.com
https://blog.jetbrains.com/blog/2020/08/06/jetbrains-security-bulletin-q2-2020/