CVE-2023-28683
CVE-2023-28683 — Jenkins Phabricator Differential Plugin : Affected plugin versions 2.1.5 and earlier fail to configure the XML parser to prevent XML external entity (XXE) attacks. This enables attackers who can influence the coverage report file contents for the ‘Post to Phabricator’ post-build ...