Nils Juenemann reported that there are cross-site scripting flaws in the various Search forms provided by Red Hat Satellite. Acknowledgements: Red Hat would like to thank Nils Juenemann for reporting this issue.
This issue has been addressed in following products: Red Hat Network Satellite Server v 5.4 Via RHSA-2011:1299 https://rhn.redhat.com/errata/RHSA-2011-1299.html
Fixed in Spacewalk master, commits 6ca26364228b6b1f1010d910b9911244eb37b883 a9da89b35581f4eedfb6ca7ddff4343b9ea21f15 e0c4ae8dd7093bbe6a12ab4462272fbab573e098 3a03e49904465ec5f16bde31c92e67c0b85ef1b9 Tagged as spacewalk-java-1.6.46-1.