CVE-2023-33006

Jenkins WSO2 Oauth Plugin cross-site request forgery vulnerability in maven/org.jenkins-ci.plugins/wso2id-oauth

Identifiers

GHSA-7xgj-j9hp-c692, CVE-2023-33006

Package Slug

maven/org.jenkins-ci.plugins/wso2id-oauth

Vulnerability

Jenkins WSO2 Oauth Plugin cross-site request forgery vulnerability

Description

A cross-site request forgery (CSRF) vulnerability in Jenkins WSO2 Oauth Plugin 1.0 and earlier allows attackers to trick users into logging in to the attacker's account.

Affected Versions

All versions up to 1.0

Solution

Unfortunately, there is no solution available yet.

Last Modified

2023-05-17

source