Description

Open redirect vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Remediation

References

CVE-2012-6073

Related Vulnerabilities

Atlassian Jira Improper Authentication Vulnerability (CVE-2021-41308)

WordPress Plugin Photo Gallery by Ays-Responsive Image Gallery SQL Injection (1.0.0)

Perl Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2018-12015)

WordPress Plugin HK Exif Tags Cross-Site Scripting (1.11)

Oracle Database Server Other Vulnerability (CVE-2006-3700)

Severity

Medium

Classification

CVE-2012-6073 CWE-20

Tags

Missing Update Known Vulnerabilities