CVE-2026-59791 PUBLISHED

Assigner: JetBrains
Reserved: 07.07.2026 Published: 10.07.2026 Updated: 10.07.2026

In JetBrains YouTrack before 2026.2.17012 cSS injection via Mermaid diagram rendering was possible

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
CVSS Score: 3.5

Product Status

Vendor JetBrains
Product YouTrack
Versions Default: unaffected
  • affected from 0 to 2026.2.17012 (excl.)

References

Problem Types

  • CWE-1021