GHSA-f3gj-hvv4-f57v, CVE-2022-45395
maven/com.thalesgroup.jenkins-ci.plugins/cccc
Improper Restriction of XML External Entity Reference
Jenkins CCCC Plugin 0.6 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
All versions up to 0.6
Unfortunately, there is no solution available yet.
2022-11-22
source |