The host is installed with JetBrains IntelliJ IDEA before 2022.1 and is prone to a HTML injection vulnerability. A flaw is present in the application, which fails to properly neutralize the special elements in output used by a downstream component. Successful exploitation could allow attackers to cause HTML injection into IDE messages.