Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (507 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2025-29904 1 Jetbrains 1 Ktor 2025-10-02 5.3 Medium
In JetBrains Ktor before 3.1.1 an HTTP Request Smuggling was possible
CVE-2025-43012 1 Jetbrains 1 Toolbox 2025-10-01 8.3 High
In JetBrains Toolbox App before 2.6 command injection in SSH plugin was possible
CVE-2025-43016 1 Jetbrains 1 Rider 2025-10-01 5.4 Medium
In JetBrains Rider before 2025.1.2 custom archive unpacker allowed arbitrary file overwrite during remote debug session
CVE-2025-29932 1 Jetbrains 1 Goland 2025-09-30 4.1 Medium
In JetBrains GoLand before 2025.1 an XXE during debugging was possible
CVE-2025-32054 1 Jetbrains 1 Intellij Idea 2025-09-30 3.3 Low
In JetBrains IntelliJ IDEA before 2024.3, 2024.2.4 source code could be logged in the idea.log file
CVE-2025-47850 1 Jetbrains 1 Youtrack 2025-09-30 4.3 Medium
In JetBrains YouTrack before 2025.1.74704 restricted attachments could become visible after issue cloning
CVE-2025-48391 1 Jetbrains 1 Youtrack 2025-09-30 7.7 High
In JetBrains YouTrack before 2025.1.76253 deletion of issues was possible due to missing permission checks in API
CVE-2025-57730 1 Jetbrains 1 Intellij Idea 2025-09-30 5.2 Medium
In JetBrains IntelliJ IDEA before 2025.2 hTML injection was possible via Remote Development feature
CVE-2025-59455 1 Jetbrains 1 Teamcity 2025-09-22 4.2 Medium
In JetBrains TeamCity before 2025.07.2 project isolation bypass was possible due to race condition
CVE-2025-59456 1 Jetbrains 1 Teamcity 2025-09-22 5.5 Medium
In JetBrains TeamCity before 2025.07.2 path traversal was possible during project archive upload
CVE-2025-59457 2 Jetbrains, Microsoft 2 Teamcity, Windows 2025-09-22 7.7 High
In JetBrains TeamCity before 2025.07.2 missing Git URL validation allowed credential leakage on Windows
CVE-2025-59458 1 Jetbrains 1 Junie 2025-09-18 8.3 High
In JetBrains Junie before 252.284.66, 251.284.66, 243.284.66, 252.284.61, 251.284.61, 243.284.61, 252.284.50, 252.284.54, 251.284.54, 251.284.50, 243.284.54, 243.284.50 code execution was possible due to improper command validation
CVE-2024-24938 1 Jetbrains 1 Teamcity 2025-08-27 5.3 Medium
In JetBrains TeamCity before 2023.11.2 limited directory traversal was possible in the Kotlin DSL documentation
CVE-2025-57734 1 Jetbrains 1 Teamcity 2025-08-21 4.3 Medium
In JetBrains TeamCity before 2025.07.1 aWS credentials were exposed in Docker script files
CVE-2025-57733 1 Jetbrains 1 Teamcity 2025-08-21 5.5 Medium
In JetBrains TeamCity before 2025.07.1 sMTP injection was possible allowing modification of email content
CVE-2025-57732 1 Jetbrains 1 Teamcity 2025-08-21 7.5 High
In JetBrains TeamCity before 2025.07.1 privilege escalation was possible due to incorrect directory ownership
CVE-2025-57731 1 Jetbrains 1 Youtrack 2025-08-21 8.7 High
In JetBrains YouTrack before 2025.2.92387 stored XSS was possible via Mermaid diagram content
CVE-2025-57729 1 Jetbrains 1 Intellij Idea 2025-08-21 6.5 Medium
In JetBrains IntelliJ IDEA before 2025.2 unexpected plugin startup was possible due to automatic LSP server start
CVE-2025-57728 1 Jetbrains 1 Intellij Idea 2025-08-21 6.5 Medium
In JetBrains IntelliJ IDEA before 2025.2 improper access control allowed Code With Me guest to discover hidden files
CVE-2025-57727 1 Jetbrains 1 Intellij Idea 2025-08-21 4.7 Medium
In JetBrains IntelliJ IDEA before 2025.2 credentials disclosure was possible via remote reference