漏洞描述
JetBrains TeamCity存在认证绕过漏洞。此漏洞是由于对用户的请求缺乏校验导致的。
JetBrains TeamCity CVE-2023-42793 认证绕过漏洞 (获取Token)
PoC代码
暂无相关漏洞推荐
- POC CVE-2025-11749: WordPress AI Engine Plugin - Token Exposure
- POC CVE-2025-55190: ArgoCD Project API Token Repository Credentials Exposure
- (CVE-2025-62712) JumpServer ConnectionToken 权限验证不当漏洞
- JetBrains TeamCity 认证绕过漏洞(CVE-2024-23917)
- POC CVE-2025-6216: Allegra - Authentication Bypass via Predictable Password Reset Token
- POC CVE-2022-32430: Lin CMS Spring Boot - Default JWT Token
- POC CVE-2023-37266: CasaOS < 0.4.4 - Authentication Bypass via Random JWT Token
- POC CVE-2023-42793: JetBrains TeamCity < 2023.05.4 - Remote Code Execution
- POC CVE-2023-4966: Citrix Bleed - Leaking Session Tokens
- POC CVE-2024-23917: JetBrains TeamCity > 2023.11.3 - Authentication Bypass
- POC CVE-2024-27198: TeamCity < 2023.11.4 - Authentication Bypass
- POC CVE-2024-27199: TeamCity < 2023.11.4 - Authentication Bypass
- POC CVE-2024-29868: Apache StreamPipes <= 0.93.0 - Use of Cryptographically Weak PRNG in Recovery Token Generation