Cross-site scripting (XSS) vulnerability in spacewalk-java 1.2.39, 1.7.54, and 2.0.2 in Spacewalk and Red Hat Network (RHN) Satellite 5.4 up to and including 5.6 allows remote malicious users to inject arbitrary web script or HTML via a crafted request that is not properly handled when logging.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat spacewalk-java 2.0.2 |
||
redhat spacewalk-java 1.2.39 |
||
redhat spacewalk-java 1.7.54 |
||
redhat satellite 5.6 |
||
redhat satellite 5.5 |
||
redhat satellite 5.4 |
||
redhat satellite with embedded oracle 5.4 |
||
redhat satellite with embedded oracle 5.5 |
||
suse manager 1.7 |
||
suse manager server - |