Does URL XSS affects JBoss Portal (EPP) 5.1.0 and onward versions?
Issue
We have noticed that there's an issue related to script injection into EAP 5.1.x URLs as described in this community discussion thread. It was fixed in community Gatein 3.1, therefore EPP 5.1.x contains Gatein 3.1, was this fixed or do we have a patch?
Environment
- Red Hat JBoss Portal Platform (EPP)
- 5.1.x
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.