The host is installed with JetBrains YouTrack versions less than 22.1.43563 and is prone to a privelege escalation vulnerability. A flaw is present in the application, which fails to properly handle restriction of rendered UI layers or frames. Successful exploitation could allow attackers to include an iframe fron a third-party domain in the issue description.