Unbounded URL Whitelisting Vulnerability in JetBrains YouTrack

Unbounded URL Whitelisting Vulnerability in JetBrains YouTrack

CVE-2019-15041 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

JetBrains YouTrack versions before 2019.1.52545 allowed unbounded URL whitelisting because of Inclusion of Functionality from an Untrusted Control Sphere.

Learn more about our Web Application Penetration Testing UK.