Description

Open redirect vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Remediation

References

CVE-2012-6073

Related Vulnerabilities

WordPress Plugin Flo Forms-Easy Drag & Drop Form Builder Multiple Vulnerabilities (1.0.35)

WordPress Plugin Gravity Forms HubSpot Cross-Site Scripting (1.0.8)

Oracle JRE CVE-2014-2423 Vulnerability (CVE-2014-2423)

WordPress Plugin JobBoardWP-Job Board Listings and Submissions Cross-Site Scripting (1.0.7)

Oracle Database Server CVE-2015-2599 Vulnerability (CVE-2015-2599)

Severity

Medium

Classification

CVE-2012-6073 CWE-20

Tags

Missing Update Known Vulnerabilities