Description

Open redirect vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Remediation

References

CVE-2012-6073

Related Vulnerabilities

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-25476)

OpenSSL Out-of-bounds Read Vulnerability (CVE-2004-0112)

phpList Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-22249)

WordPress Plugin Resume Submissions & Job Postings Arbitrary File Upload (2.5.1)

Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-11327)

Severity

Medium

Classification

CVE-2012-6073 CWE-20

Tags

Missing Update Known Vulnerabilities