CVE-2022-28650

Summary

In JetBrains YouTrack before 2022.1.43700 it was possible to inject JavaScript into Markdown in the YouTrack Classic UI

Affected Software

VendorProductVersion RangeStatus
JetBrainsYouTrack2022.1.43700 < 2022.1.43700affected

Weaknesses

  • CWE-79: CWE-79 Cross-site Scripting (XSS)

ADP Enrichment

CVE Program Container

Additional References

References