Package impact
Maven / org.jenkins-ci.plugins:wso2id-oauth
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-47889 | unknown | — | — | 1y ago | Jenkins WSO2 Oauth Plugin Fails to Properly Authenticate User Credentials | |||
| CVE-2023-33005 | unknown | — | — | 3y ago | Jenkins WSO2 Oauth Plugin Session Fixation vulnerability | |||
| CVE-2023-33006 | unknown | — | — | 3y ago | Jenkins WSO2 Oauth Plugin cross-site request forgery vulnerability | |||
| CVE-2023-30527 | unknown | — | — | 3y ago | Jenkins WSO2 Oauth Plugin stores WSO2 Oauth client secret unencrypted in global config.xml file on Jenkins controller | |||
| CVE-2023-30528 | unknown | — | — | 3y ago | Jenkins WSO2 Oauth Plugin does not mask the WSO2 Oauth client secret on the global configuration form |