CVE-2023-33005
Jenkins WSO2 Oauth Plugin Session Fixation vulnerability in maven/org.jenkins-ci.plugins/wso2id-oauth
Identifiers
GHSA-xxq2-74hw-vg6m, CVE-2023-33005
Package Slug
maven/org.jenkins-ci.plugins/wso2id-oauth
Vulnerability
Jenkins WSO2 Oauth Plugin Session Fixation vulnerability
Description
Jenkins WSO2 Oauth Plugin 1.0 and earlier does not invalidate the previous session on login.
Affected Versions
All versions up to 1.0
Solution
Unfortunately, there is no solution available yet.
Last Modified
2023-05-17
| source |