21 matches found
EUVD-2005-3750
Malware in sbrugna...
EUVD-2005-3753
Malware in sbrugna...
EUVD-2005-3749
Malware in sbrugna...
EUVD-2007-5235
Malware in sbrugna...
Google Mini Search Appliance 4.4.102.M.36 Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20149/info The Google Mini Search Appliance is prone to an information-disclosure vulnerability. An attacker can exploit this vulnerability to reveal the location of a directory contained in the configured document root...
Google Mini Search Appliance 3.4.14 IE Parameter Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25894/info Google Mini Search Appliance is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
CVE-2007-5255
Cross-site scripting XSS vulnerability in Google Mini Search Appliance 3.4.14 allows remote attackers to inject arbitrary web script or HTML via the ie parameter to the /search URI...
Cross site scripting
Cross-site scripting XSS vulnerability in Google Mini Search Appliance 3.4.14 allows remote attackers to inject arbitrary web script or HTML via the ie parameter to the /search URI...
CVE-2007-5255
Cross-site scripting XSS vulnerability in Google Mini Search Appliance 3.4.14 allows remote attackers to inject arbitrary web script or HTML via the ie parameter to the /search URI...
CVE-2007-5255
CVE-2007-5255 describes an XSS vulnerability in Google Mini Search Appliance 3.4.14. The flaw allows remote attackers to inject arbitrary web script or HTML by supplying content to the ie parameter of the /search URI. The issue is evidenced in multiple sources (NVD/NVD-affiliates, Nessus plugin) ...
Google Mini Search Appliance 3.4.14 - IE Cross-Site Scripting
Google Mini Search Appliance 3.4.14 - IE Cross-Site Scripting source: https://www.securityfocus.com/bid/25894/info Google Mini Search Appliance is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...
[SA22059] Google Mini Search Appliance Path Disclosure Weakness
TITLE: Google Mini Search Appliance Path Disclosure Weakness SECUNIA ADVISORY ID: SA22059 VERIFY ADVISORY: http://secunia.com/advisories/22059/ CRITICAL: Not critical IMPACT: Exposure of system information WHERE: From remote REVISION: 1.1 originally posted 2006-09-29 OPERATING SYSTEM: Google Mini...
Google Mini Search Appliance 4.4.102.M.36 - Information Disclosure
Google Mini Search Appliance 4.4.102.M.36 - Information Disclosure source: https://www.securityfocus.com/bid/20149/info The Google Mini Search Appliance is prone to an information-disclosure vulnerability. An attacker can exploit this vulnerability to reveal the location of a directory contained ...
CVE-2005-3757
The Saxon XSLT parser in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to obtain sensitive information and execute arbitrary code via dangerous Java class methods in select attribute of xsl:value-of tags in XSLT style sheets, such as 1 system-property...
CVE-2005-3758
Cross-site scripting XSS vulnerability in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to inject arbitrary Javascript, and possibly other web script or HTML, via a proxystylesheet variable that contains a malicious XSLT style sheet...
CVE-2005-3756
Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to port scan arbitrary hosts via URLs with modified targets and ports, then comparing the resulting error messages to determine open and closed ports...
CVE-2005-3758
Cross-site scripting XSS vulnerability in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to inject arbitrary Javascript, and possibly other web script or HTML, via a proxystylesheet variable that contains a malicious XSLT style sheet...
CVE-2005-3754
CVE-2005-3754 describes a cross-site scripting (XSS) vulnerability in the Google Mini Search Appliance, and possibly Google Search Appliance, caused by insufficient sanitization of the proxystylesheet parameter. The flaw allows remote attackers to inject arbitrary Javascript (and potentially othe...
CVE-2005-3757
The CVE-2005-3757 issue affects the Saxon XSLT parser used by Google Mini Search Appliance (and possibly Google Search Appliance). The vulnerability arises from dangerous Java methods (system-property, sys:getProperty, run:exec) in the select attribute of xsl:value-of in XSLT style sheets, enabli...
CVE-2005-3757
The Saxon XSLT parser in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to obtain sensitive information and execute arbitrary code via dangerous Java class methods in select attribute of xsl:value-of tags in XSLT style sheets, such as 1 system-property...