CVE-2025-53676 – Jenkins Xooa Plugin Unencrypted Configuration File Storage

CVE ID : CVE-2025-53676

Published : July 9, 2025, 4:15 p.m. | 1 hour, 50 minutes ago

Description : Jenkins Xooa Plugin 0.0.7 and earlier stores the Xooa Deployment Token unencrypted in its global configuration file on the Jenkins controller, where it can be viewed by users with access to the Jenkins controller file system.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…