Nils Juenemann reported that there are cross-site scripting flaws in the various Search forms provided by Red Hat Satellite.
Red Hat would like to thank Nils Juenemann for reporting this issue.
This issue has been addressed in following products:
Red Hat Network Satellite Server v 5.4
Via RHSA-2011:1299 https://rhn.redhat.com/errata/RHSA-2011-1299.html
Fixed in Spacewalk master, commits
Tagged as spacewalk-java-1.6.46-1.