Cross-site scripting (XSS) vulnerability in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allows remote authenticated users to inject arbitrary web script or HTML via the System Groups field.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7812
Reference (s):
- REDHAT:RHSA-2015:0033
- URL: http://rhn.redhat.com/errata/RHSA-2015-0033.html
- SECUNIA:62183
- URL: http://secunia.com/advisories/62183
- SUSE:SUSE-SU-2015:0928