Cross-site scripting (XSS) vulnerability in spacewalk-java 1.2.39, 1.7.54, and 2.0.2 in Spacewalk and Red Hat Network (RHN) Satellite 5.4 up to and including 5.6 allows remote malicious users to inject arbitrary web script or HTML via a crafted request that is not properly handled when logging.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat satellite 5.4 |
||
redhat satellite 5.5 |
||
redhat satellite 5.6 |
||
redhat satellite with embedded oracle 5.4 |
||
redhat satellite with embedded oracle 5.5 |
||
redhat spacewalk-java 1.2.39 |
||
redhat spacewalk-java 1.7.54 |
||
redhat spacewalk-java 2.0.2 |
||
suse manager 1.7 |
||
suse manager server - |