CVE-2025-47889 – Jenkins WSO2 Oauth Plugin Authentication Bypass Vulnerability

CVE ID : CVE-2025-47889

Published : May 14, 2025, 9:15 p.m. | 1 hour, 39 minutes ago

Description : In Jenkins WSO2 Oauth Plugin 1.0 and earlier, authentication claims are accepted without validation by the “WSO2 Oauth” security realm, allowing unauthenticated attackers to log in to controllers using this security realm using any username and any password, including usernames that do not exist.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

نوشته های مشابه

CVE-2025-3053 – “UiPress Lite WordPress Remote Code Execution Vulnerability”

CVE-2025-48024 – BlueWave Checkmate Sensitive Data Disclosure

CVE-2024-13914 – “WordPress File Manager Advanced Shortcode Local File Inclusion Vulnerability”

CVE-2025-3742 – WordPress Responsive Lightbox & Gallery Stored Cross-Site Scripting Vulnerability