In JetBrains TeamCity before 2023.05 possible XSS in the Plugin Vendor URL was possibleReferenceshttps://www.jetbrains.com/privacy-security/issues-fixed/