CVE-2024-49579

Publication date

2024-10-17 13:00:15

Family

JetBrains

State

PUBLISHED

Description

In JetBrains YouTrack before 2024.3.47197 insecure plugin iframe allowed arbitrary JavaScript execution and unauthorized API requests