Vulnerabilities > CVE-2022-28649 - Improper Restriction of Rendered UI Layers or Frames vulnerability in Jetbrains Youtrack
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
In JetBrains YouTrack before 2022.1.43563 it was possible to include an iframe from a third-party domain in the issue description