A cross-site request forgery (CSRF) vulnerability in Jenkins Assembla Auth Plugin 1.14 and earlier allows attackers to trick users into logging in to the attacker's account.

Jenkins Assembla Auth Plugin vulnerable to cross-site request forgery