VYPR

Maven package

org.jenkins-ci.plugins/jdepend

pkg:maven/org.jenkins-ci.plugins/jdepend

Vulnerabilities (1)

  • CVE-2025-64134Oct 29, 2025
    affected <= 1.3.1

    Jenkins JDepend Plugin 1.3.1 and earlier includes an outdated version of JDepend Maven Plugin that does not configure its XML parser to prevent XML external entity (XXE) attacks.