Improper Restriction of XML External Entity Reference
Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
Advisories for Maven/Org.jvnet.hudson.plugins/Japex package
2022
Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.