CVE-2025-52877
- EPSS 0.02%
- Published 23.06.2025 14:13:47
- Last modified 25.06.2025 19:30:30
In JetBrains TeamCity before 2025.03.3 reflected XSS on diskUsageBuildsStats page was possible
CVE-2025-52875
- EPSS 0.08%
- Published 23.06.2025 14:13:46
- Last modified 25.06.2025 19:30:15
In JetBrains TeamCity before 2025.03.3 a DOM-based XSS at the Performance Monitor page was possible
CVE-2025-47854
- EPSS 0%
- Published 20.05.2025 17:37:46
- Last modified 28.05.2025 21:12:48
In JetBrains TeamCity before 2025.03.2 open redirect was possible on editing VCS Root page
CVE-2025-47853
- EPSS 0.01%
- Published 20.05.2025 17:37:45
- Last modified 28.05.2025 21:13:18
In JetBrains TeamCity before 2025.03.2 stored XSS via Jira integration was possible
CVE-2025-47851
- EPSS 0.01%
- Published 20.05.2025 17:37:44
- Last modified 28.05.2025 21:13:48
In JetBrains TeamCity before 2025.03.2 stored XSS via GitHub Checks Webhook was possible
CVE-2025-47852
- EPSS 0.01%
- Published 20.05.2025 17:37:44
- Last modified 28.05.2025 21:13:36
In JetBrains TeamCity before 2025.03.2 stored XSS via YouTrack integration was possible
CVE-2025-46618
- EPSS 0.01%
- Published 25.04.2025 14:32:34
- Last modified 16.05.2025 14:50:58
In JetBrains TeamCity before 2025.03.1 stored XSS was possible on Data Directory tab
CVE-2025-46432
- EPSS 0%
- Published 25.04.2025 14:32:33
- Last modified 16.05.2025 14:51:02
In JetBrains TeamCity before 2025.03.1 base64-encoded credentials could be exposed in build logs
CVE-2025-46433
- EPSS 0%
- Published 25.04.2025 14:32:33
- Last modified 16.05.2025 14:51:00
In JetBrains TeamCity before 2025.03.1 improper path validation in loggingPreset parameter was possible
CVE-2025-31140
- EPSS 0.12%
- Published 27.03.2025 11:24:31
- Last modified 16.05.2025 14:51:08
In JetBrains TeamCity before 2025.03 stored XSS was possible on Cloud Profiles page