Does URL XSS affects JBoss Portal (EPP) 5.1.0 and onward versions?

Solution Verified - Updated -

Issue

We have noticed that there's an issue related to script injection into EAP 5.1.x URLs as described in this community discussion thread. It was fixed in community Gatein 3.1, therefore EPP 5.1.x contains Gatein 3.1, was this fixed or do we have a patch?

Environment

  • Red Hat JBoss Portal Platform (EPP)
    • 5.1.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In