PT-2026-44962 · Jetbrains · Copyright Plugin+1
Published
2026-05-29
·
Updated
2026-05-29
·
CVE-2026-49382
CVSS v3.1
4.5
Medium
| Vector | AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
JetBrains IntelliJ IDEA versions prior to 2026.1
Description
Code execution is possible through template injection within the Copyright plugin. Template injection occurs when untrusted input is embedded into a template and executed by the engine, allowing an attacker to run arbitrary code.
Recommendations
Update to version 2026.1 or later.
As a temporary workaround, consider disabling the Copyright plugin to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Copyright Plugin
Intellij Idea