cpe:/a:jetbrains:teamcity:8.0 CVE-2014-10036 2015-01-13T10:59:46.430-05:00 2017-09-07T21:29:03.857-04:00 4.3 NETWORK MEDIUM NONE NONE PARTIAL NONE http://nvd.nist.gov 2015-01-14T15:40:58.633-05:00 SECUNIA 57221 CONFIRM http://confluence.jetbrains.com/display/TCD8/What%27s+New+in+TeamCity+8.1 MISC https://www.netsparker.com/critical-xss-vulnerabilities-in-teamcity/ XF teamcity-camefromurl-xss(91768) Cross-site scripting (XSS) vulnerability in JetBrains TeamCity before 8.1 allows remote attackers to inject arbitrary web script or HTML via the cameFromUrl parameter to feed/generateFeedUrl.html.