2 matches found
CVE-2022-28140
creationtimestamp| type| source ---|---|--- 2022-03-29 16:41:30+00:00| seen| https://t.me/cibsecurity/39737...
CVE-2022-28140
CVE-2022-28140 affects Jenkins Flaky Test Handler Plugin, version 1.2.1 and earlier. The root cause is that the plugin’s XML parser is not configured to prevent XML external entity (XXE) attacks. Per CNVD/GHSA, this XXE issue can enable an attacker to extract secrets from the Jenkins controller (...