The host is installed with JetBrains TeamCity before 2023.05.1 and is prone to a stored XSS vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. On successful exploitation, stored XSS while viewing the build log was possible.