Vigil@nce - Vigil@nce - Jenkins Generic Webhook Trigger Plugin: external XML entity injection, analyzed on 18/06/2021
August 2021 by Vigil@nce
Vigil@nce - An attacker can transmit malicious XML data to Jenkins Generic Webhook Trigger Plugin, in order to read a file, scan sites, or trigger a denial of service.
Plus d'information sur : https://vigilance.fr/vulnerability/Jenkins-Generic-Webhook-Trigger-Plugin-external-XML-entity-injection-35729