描述
In JetBrains IntelliJ IDEA before 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.
AI分析AI驱动
受影响产品
jetbrainsintellij_idea
参考资料
- https://www.jetbrains.com/privacy-security/issues-fixed/Vendor Advisory
- https://www.jetbrains.com/privacy-security/issues-fixed/Vendor Advisory