Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Teamcity
(Jetbrains)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 232 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-06-23 | CVE-2025-52879 | In JetBrains TeamCity before 2025.03.3 reflected XSS in the NPM Registry integration was possible | Teamcity | N/A | ||
| 2024-03-04 | CVE-2024-27199 | In JetBrains TeamCity before 2023.11.4 path traversal allowing to perform limited admin actions was possible | Teamcity | 7.3 | ||
| 2025-05-20 | CVE-2025-47851 | In JetBrains TeamCity before 2025.03.2 stored XSS via GitHub Checks Webhook was possible | Teamcity | 5.4 | ||
| 2025-05-20 | CVE-2025-47854 | In JetBrains TeamCity before 2025.03.2 open redirect was possible on editing VCS Root page | Teamcity | 6.1 | ||
| 2025-05-20 | CVE-2025-47852 | In JetBrains TeamCity before 2025.03.2 stored XSS via YouTrack integration was possible | Teamcity | 5.4 | ||
| 2025-05-20 | CVE-2025-47853 | In JetBrains TeamCity before 2025.03.2 stored XSS via Jira integration was possible | Teamcity | 5.4 | ||
| 2025-02-11 | CVE-2025-26493 | In JetBrains TeamCity before 2024.12.2 several DOM-based XSS were possible on the Code Inspection Report tab | Teamcity | 6.1 | ||
| 2025-02-11 | CVE-2025-26492 | In JetBrains TeamCity before 2024.12.2 improper Kubernetes connection settings could expose sensitive resources | Teamcity | 9.1 | ||
| 2025-03-27 | CVE-2025-31139 | In JetBrains TeamCity before 2025.03 base64 encoded password could be exposed in build log | Teamcity | 6.5 | ||
| 2025-03-27 | CVE-2025-31141 | In JetBrains TeamCity before 2025.03 exception could lead to credential leakage on Cloud Profiles page | Teamcity | 7.5 |