A session fixation vulnerability in Jenkins Gitlab Authentication Plugin 1.4 and previous versions in GitLabSecurityRealm.java allows unauthorized malicious users to impersonate another user if they can control the pre-authentication session.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenkins gitlab oauth |