CVE-2025-64134 | JDepend Plugin up to 1.3.1 on Jenkins XML Parser xml external entity reference

Inserito da Angelo Barbosa | Ott 29, 2025 | CVE

A vulnerability categorized as problematic has been discovered in JDepend Plugin up to 1.3.1 on Jenkins. This issue affects some unknown processing of the component XML Parser. Such manipulation leads to xml external entity reference.

This vulnerability is uniquely identified as CVE-2025-64134. The attack can be launched remotely. No exploit exists.

CVE-2025-64134 | JDepend Plugin up to 1.3.1 on Jenkins XML Parser xml external entity reference

Post correlati

CVE-2024-50603 | Aviatrix Controller prior 7.1.4191/7.2.4996 /v1/api os command injection

CVE-2023-6439 | ZenTao PMS 18.8 cross site scripting

CVE-2024-45290 | PHPOffice PhpSpreadsheet up to 1.29.1/2.1.0 XLSX File absolute path traversal

CVE-2025-1173 | 1000 Projects Bookstore Management System 1.0 process_users_del.php id sql injection