VulnerableCode Package Details - pkg:maven/org.openshift.jenkins/openshift-login@1.1.0.230.v5d7030b

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-2a3h-6wad-63gc	URL Redirection to Untrusted Site ('Open Redirect') Jenkins OpenShift Login Plugin 1.1.0.227.v27e08dfb_1a_20 and earlier improperly determines that a redirect URL after login is legitimately pointing to Jenkins, allowing attackers to perform phishing attacks.	CVE-2023-37947 GHSA-35gf-xjgf-96c5
VCID-955x-hg4a-5kc3	Session Fixation Jenkins OpenShift Login Plugin 1.1.0.227.v27e08dfb_1a_20 and earlier does not invalidate the previous session on login.	CVE-2023-37946 GHSA-rwg5-2pv9-633w

Vulnerability

Summary

Aliases

VCID-2a3h-6wad-63gc

URL Redirection to Untrusted Site ('Open Redirect') Jenkins OpenShift Login Plugin 1.1.0.227.v27e08dfb_1a_20 and earlier improperly determines that a redirect URL after login is legitimately pointing to Jenkins, allowing attackers to perform phishing attacks.

CVE-2023-37947
GHSA-35gf-xjgf-96c5

VCID-955x-hg4a-5kc3

Session Fixation Jenkins OpenShift Login Plugin 1.1.0.227.v27e08dfb_1a_20 and earlier does not invalidate the previous session on login.

CVE-2023-37946
GHSA-rwg5-2pv9-633w

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-02T16:59:55.346077+00:00	GHSA Importer	Fixing	VCID-955x-hg4a-5kc3	https://github.com/advisories/GHSA-rwg5-2pv9-633w	38.1.0
2026-04-02T16:59:55.259733+00:00	GHSA Importer	Fixing	VCID-2a3h-6wad-63gc	https://github.com/advisories/GHSA-35gf-xjgf-96c5	38.1.0
2026-04-01T12:58:55.791799+00:00	GithubOSV Importer	Fixing	VCID-2a3h-6wad-63gc	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/07/GHSA-35gf-xjgf-96c5/GHSA-35gf-xjgf-96c5.json	38.0.0
2026-04-01T12:58:55.374643+00:00	GithubOSV Importer	Fixing	VCID-955x-hg4a-5kc3	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/07/GHSA-rwg5-2pv9-633w/GHSA-rwg5-2pv9-633w.json	38.0.0
2026-04-01T12:51:33.803575+00:00	GitLab Importer	Fixing	VCID-955x-hg4a-5kc3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.openshift.jenkins/openshift-login/CVE-2023-37946.yml	38.0.0
2026-04-01T12:51:33.740688+00:00	GitLab Importer	Fixing	VCID-2a3h-6wad-63gc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.openshift.jenkins/openshift-login/CVE-2023-37947.yml	38.0.0