Jenkins WSO2 Oauth Plugin 1.0 and earlier does not invalidate the previous session on login.
5.4CVSS
5.5AI Score
0.0005EPSS
A cross-site request forgery (CSRF) vulnerability in Jenkins WSO2 Oauth Plugin 1.0 and earlier allows attackers to trick users into logging in to the attacker's account.
5.4CVSS
5.4AI Score
0.0005EPSS