Reflective XSS in Smart Variables
Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1364025
Description of problem:
Build: Satellite 6.2 snap 21.2
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Go to Smart Classes
2. Create a new variable for any class.
3. Select Array as datatype and default value as <script>alert(1)</script>
4. Select Optional Input validator and select list with [<script>alert(1)</script>] value
The script is run by the browser and input is not sanitized.
The user input should be sanitized and proper error should be thrown