CVE-2023-28683

8.2HIGH

Jenkins Phabricator Differential Plugin 2.1.5 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Published: 4/2/2023Updated: 2/21/2025
View on NVDView on MITRE

Description

Jenkins Phabricator Differential Plugin 2.1.5 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

AI AnalysisPowered by AI

Affected Products

jenkinsphabricator_differential

References