XSS Vulnerability in JetBrains TeamCity Plugin Vendor URL
CVE-2023-34222
6.1MEDIUM
What is CVE-2023-34222?
The reported vulnerability in JetBrains TeamCity allows for potential Cross-Site Scripting (XSS) attacks through the Plugin Vendor URL. This issue could enable malicious actors to inject and execute harmful scripts, putting user data and application integrity at risk. Users and administrators are advised to upgrade to the latest version, released in May 2023, to mitigate these risks.
Affected Version(s)
TeamCity 0 < 2023.05