CVE-2014-1985 | Redmine up to 2.5.0 redirect_back_or_default input validation (Nessus ID 87299 / XFDB-92409)
A vulnerability marked as critical has been reported in Redmine up to 2.5.0. This affects the function redirect_back_or_default. Performing a manipulation results in improper input validation.
This vulnerability is reported as CVE-2014-1985. The attack is possible to be carried out remotely. No exploit exists.
It is suggested to upgrade the affected component.