CNNVD-202602-1344 Information

CNNVD ID

CNNVD-202602-1344

Related CVE

CVE-2026-25847

• CNNVD Published: 2026-02-09

Description (Chinese)

JetBrains PyCharm是捷克JetBrains公司的一款针对Python语言的集成开发环境（IDE）。 JetBrains PyCharm 2025.3.2之前版本存在跨站脚本漏洞，该漏洞源于Jupyter查看器页面存在基于DOM的跨站脚本，可能导致跨站脚本攻击。

Description (English)

Jetbrains PyCharm is an integrated development environment (IDE) for the Python language of Czech Jetbrains. Jetbrains PyCharm 2025.3.2 has a cross-site script loophole, which stems from the existence of a DOM-based cross-site script on the Jupyter Viewer page, which may result in a cross-site script attack.

Vulnerability Type

跨站脚本

Affected Vendor

JetBrains

Published

2026-02-09

Last Modified

2026-02-24

References

https://www.jetbrains.com/privacy-security/issues-fixed/ https://access.redhat.com/security/cve/cve-2026-25847

Patch

https://www.jetbrains.com/privacy-security/issues-fixed/