CVE-2014-7812

Cross-site scripting (XSS) vulnerability in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allows remote authenticated users to inject arbitrary web script or HTML via the System Groups field.

Date published : 2015-01-15

http://rhn.redhat.com/errata/RHSA-2015-0033.html

http://secunia.com/advisories/62183