VYPR
Medium severity4.3NVD Advisory· Published May 27, 2026· Updated May 28, 2026

CVE-2026-48924

CVE-2026-48924

Description

Jenkins Bitbucket OAuth Plugin 0.17 and earlier does not restrict the redirect URL after login, allowing attackers to perform phishing attacks.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

1

News mentions

2