Tkmwrbl

**Name of the Vulnerable Software and Affected Versions** Jenkins OWASP Dependency-Check Plugin versions 5.4.5 and earlier **Description** The issue is related to a stored cross-site scripting (XSS) vulnerability. This occurs because vulnerability metadata from Dependency-Check reports is not properly escaped, allowing for potential malicious script execution. **Recommendations** For Jenkins OWASP Dependency-Check Plugin versions 5.4.5 and earlier, update to a version that properly escapes vulnerability metadata to prevent stored XSS attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.