Jenkins WebSphere Deployer Plugin 1.6.1 and previous versions does not configure the XML parser to prevent XXE attacks which can be exploited by a user with Job/Configure permissions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenkins websphere deployer |