GHSA-g5mj-c26g-vmpm
GitHub Security Advisory
XML Entity Expansion in Jenkins TestComplete support Plugin
✓ GitHub Reviewed
CRITICAL
Has CVE
Advisory Details
Jenkins TestComplete support Plugin 2.8.1 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
Affected Packages
Maven
org.jenkins-ci.plugins:TestComplete
Affected versions:
0
(fixed in 2.9)
Related CVEs
Key Information
9.0
/10
Dataset
Last updated: August 25, 2025 6:33 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.