Jenkins Security Advisory 2013-02-16 Another vulnerability enables cross-site scripting (XSS) attacks. https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-02-16
This issue has been addressed in following products: RHEL 6 Version of OpenShift Enterprise Via RHSA-2013:0638 https://rhn.redhat.com/errata/RHSA-2013-0638.html
Upstream commit is: https://github.com/jenkinsci/jenkins/commit/f8d2a0ba6c2e261f48287bdd95bd7a2d7a8d2d0e
*** Bug 1054557 has been marked as a duplicate of this bug. ***