Jenkins OpenShift Login Plugin 1.1.0.227.v27e08dfb_1a_20 and earlier improperly determines that a redirect URL after login is legitimately pointing to Jenkins, allowing attackers to perform phishing attacks.
CPE | Name | Operator | Version |
---|---|---|---|
openshift_login | eq | < 1.1.0.230.v5d7030b-f5432 |