CVE-2023-24427, GHSA-x9q4-qwfh-9gjq
maven/org.jenkins-ci.plugins/bitbucket-oauth
Session fixation vulnerability in Jenkins Bitbucket OAuth Plugin
Jenkins Bitbucket OAuth Plugin 0.12 and earlier does not invalidate the previous session on login.
All versions up to 0.13
Unfortunately, there is no solution available yet.
2023-01-27
source |