Description
The startup.jsp resource in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote attackers to redirect users to a different website which they may use as part of performing a phishing attack via an open redirect.
Remediation
References
Related Vulnerabilities
WordPress Plugin WangGuard Multiple Vulnerabilities (1.7.2)
WordPress Plugin Content Audit Blind SQL Injection (1.6)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2266)
WordPress Plugin WooCommerce Customers Manager Unspecified Vulnerability (26.6)
WordPress Plugin Category Order and Taxonomy Terms Order PHP Object Injection (1.5.2.2)