Jenkins WSO2 Oauth Plugin 1.0 and previous versions does not mask the WSO2 Oauth client secret on the global configuration form, increasing the potential for malicious users to observe and capture it.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenkins wso2 oauth |