GHSA-9wrr-4r9v-26xc, CVE-2023-24457
maven/org.jenkins-ci.plugins/keycloak
Cross-Site Request Forgery (CSRF)
A cross-site request forgery (CSRF) vulnerability in Jenkins Keycloak Authentication Plugin 2.3.0 and earlier allows attackers to trick users into logging in to the attacker's account.
All versions up to 2.3.0
Unfortunately, there is no solution available yet.
2023-01-27
source |