CVE-2024-50579

Name of the Vulnerable Software and Affected Versions JetBrains YouTrack versions prior to 2024.3.47707

Description The issue is related to the lack of protection of the web page structure in JetBrains YouTrack, allowing for reflected XSS due to insecure link sanitization. This could enable an attacker to conduct cross-site scripting attacks.

Recommendations For versions prior to 2024.3.47707, update to version 2024.3.47707 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially vulnerable links to minimize the risk of exploitation.