CVE-2014-7852
The CVE-2014-7852 issue is a cross-site scripting (XSS) vulnerability in JBoss RichFaces used by Red Hat JBoss Portal 6.1.1, where RichFaces accepted arbitrary strings in a URL and returned them unencoded in a CSS file. The Red Hat advisory RHSA-2014:1973 documents that this could enable an attac...