CVE-2021-25765

CVE-2021-25765

In JetBrains YouTrack before 2020.4.4701, CSRF via attachment upload was possible.

Source: CVE-2021-25765