Cross-site scripting (XSS) vulnerability in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to inject arbitrary Javascript, and possibly other web script or HTML, via a proxystylesheet variable that contains a malicious XSLT style sheet.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2005-11-22 21:03
Updated : 2024-02-04 16:52
NVD link : CVE-2005-3758
Mitre link : CVE-2005-3758
CVE.ORG link : CVE-2005-3758
JSON object : View
Products Affected
- mini_search_appliance
- search_appliance
CWE