4 matches found
CVE-2023-28681
Jenkins Visual Studio Code Metrics Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...
CVE-2023-28681
Jenkins Visual Studio Code Metrics Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...
CVE-2023-28681
CVE-2023-28681 affects Jenkins Visual Studio Code Metrics Plugin 1.7 and earlier. The vulnerability arises because the plugin’s XML parser is not configured to prevent XML external entity (XXE) attacks, which can allow an attacker to cause the Jenkins controller/server-side processing to reveal s...
CVE-2023-28681
Jenkins Visual Studio Code Metrics Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...