Improper Restriction of XML External Entity Reference
Jenkins Nerrvana Plugin does not configure its XML parser to prevent XML external entity (XXE) attacks.
Advisories for Maven/Org.jenkins-Ci.plugins/Nerrvana-Plugin package
2020
Jenkins Nerrvana Plugin does not configure its XML parser to prevent XML external entity (XXE) attacks.