Resolved: Search Query XSS in www.redhat.com
Reported a while back and fixed more recently.
Does your Site have a Search Box? Test for XSS.
Does your Site use Omniture Tracking Code? Test for XSS.
Once upon a time, www.redhat.com had Search Form XSS in the q Param due to the “old and vulnerable Omniture Code” that allowed Injection to any Site containing the Omniture Tracking Code.
|Resolved: Search Query XSS in www.redhat.com|