CVE-2023-24428, GHSA-685j-36qx-3vp2
maven/org.jenkins-ci.plugins/bitbucket-oauth
Cross-Site Request Forgery (CSRF)
A cross-site request forgery (CSRF) vulnerability in Jenkins Bitbucket OAuth Plugin 0.12 and earlier allows attackers to trick users into logging in to the attacker's account.
All versions before 0.13
Upgrade to version 0.13 or above.
2023-01-27
source |