Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project. jenkins Plugin is an application software. jenkins Recipe Plugin version 1.2 and prior versions are vulnerable to XML external entity injection, which stems from a network system or product that does not set the correct filter to allow references to external entities, and a remote attacker could exploit the vulnerability by sending a specially crafted XML file to read the file.