4 matches found
CVE-2022-46683
Jenkins Google Login Plugin 1.4 through 1.6 both inclusive improperly determines that a redirect URL after login is legitimately pointing to Jenkins...
CVE-2022-46683
Jenkins Google Login Plugin 1.4 through 1.6 both inclusive improperly determines that a redirect URL after login is legitimately pointing to Jenkins...
CVE-2022-46683
Jenkins Google Login Plugin 1.4 through 1.6 both inclusive improperly determines that a redirect URL after login is legitimately pointing to Jenkins...
CVE-2022-46683
The CVE-2022-46683 issue affects Jenkins Google Login Plugin versions 1.4–1.6 (inclusive). The root cause is an improper check that a post-login redirect URL legitimately points to Jenkins, enabling an open redirect scenario. This could allow phishing-like redirects to attacker-controlled sites b...