GHSA-xxq2-74hw-vg6m, CVE-2023-33005
maven/org.jenkins-ci.plugins/wso2id-oauth
Jenkins WSO2 Oauth Plugin Session Fixation vulnerability
Jenkins WSO2 Oauth Plugin 1.0 and earlier does not invalidate the previous session on login.
All versions up to 1.0
Unfortunately, there is no solution available yet.
2023-05-17
source |