Cross-Site Scripting (XSS) Vulnerability in JetBrains TeamCity 2019.1 and 2019.1.1

CVE-2019-15848 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

JetBrains TeamCity 2019.1 and 2019.1.1 allows cross-site scripting (XSS), potentially making it possible to send an arbitrary HTTP request to a TeamCity server under the name of the currently logged-in user.

Learn more about our Cis Benchmark Audit For Server Software.