CVE-2026-28194
MEDIUM WAF: Medium
CVSS 6.1
Published: 2026-02-25
CWE-601
In JetBrains TeamCity before 2025.11.3 open redirect was possible in the React project creation flow
WAF Coverage Analysis
Open Redirect
Medium WAF Coverage
OWASP: A01:2021 Broken Access Control
941xxx - XSS / XXE
Affected Software
| Vendor | Product | Version |
|---|---|---|
| jetbrains | teamcity | up to 2025.11.3 |
References
- www.jetbrains.com (Vendor Advisory)