CVE-2025-54527

Publication date

2025-07-28 16:20:38

Family

JetBrains

State

PUBLISHED

Description

In JetBrains YouTrack before 2025.2.86935, 2025.2.87167, 2025.3.87341, 2025.3.87344 improper iframe configuration in widget sandbox allows popups to bypass security restrictions