Red Hat · Red Hat Jboss Enterprise Portal Platform · CVE-2011-2941
**Name of the Vulnerable Software and Affected Versions**
Red Hat JBoss Enterprise Portal Platform versions prior to 5.2.0
**Description**
The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the `initialURI` parameter. This can be exploited by including a malicious URL in the `initialURI` parameter, potentially leading to phishing attacks.
**Recommendations**
For versions prior to 5.2.0, update to version 5.2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the `initialURI` parameter to minimize the risk of exploitation.