Lucene search
K
GoogleSearch Appliance

7 matches found

CVE
CVE
added 2005/11/22 9:0 p.m.70 views

CVE-2005-3756

Nessus plugin data in the connected document associates CVE-2005-3756 with Google Search Appliance proxystylesheet vulnerabilities that include remote access flaws enabling port scanning and potential code execution (via unsanitized proxystylesheet input). The CVE description in the initial docum...

5CVSS6.9AI score0.01848EPSS
CVE
CVE
added 2005/11/22 9:0 p.m.65 views

CVE-2005-3758

CVE-2005-3758 is an XSS in Google Mini Search Appliance (and possibly Google Search Appliance) triggered by a malicious proxystylesheet in the proxystylesheet variable, allowing remote injection of Javascript/HTML. Affected: proxystylesheet handling; vulnerability type: XSS. Impact (per provided ...

4.3CVSS5.9AI score0.1911EPSS
CVE
CVE
added 2005/11/22 9:0 p.m.59 views

CVE-2005-3754

CVE-2005-3754 describes a cross-site scripting (XSS) vulnerability in the Google Mini Search Appliance, and possibly Google Search Appliance, caused by insufficient sanitization of the proxystylesheet parameter. The flaw allows remote attackers to inject arbitrary Javascript (and potentially othe...

4.3CVSS5.9AI score0.02483EPSS
CVE
CVE
added 2005/11/22 9:0 p.m.59 views

CVE-2005-3755

CVE-2005-3755 describes a directory traversal vulnerability in Google Mini Search Appliance (and possibly Google Search Appliance). The issue allows remote attackers to determine existence of arbitrary files by supplying a relative path from a style sheet directory and inspecting error messages. ...

5CVSS6.8AI score0.03599EPSS
CVE
CVE
added 2005/11/22 9:0 p.m.58 views

CVE-2005-3757

The CVE-2005-3757 issue affects the Saxon XSLT parser used by Google Mini Search Appliance (and possibly Google Search Appliance). The vulnerability arises from dangerous Java methods (system-property, sys:getProperty, run:exec) in the select attribute of xsl:value-of in XSLT style sheets, enabli...

7.5CVSS7.4AI score0.4125EPSS
Web
CVE
CVE
added 2006/12/02 2:0 a.m.54 views

CVE-2006-6223

The vulnerability CVE-2006-6223 affects Google Mini and Google Search Appliance. Both products fail to handle UTF-7 encoded URIs, which may allow a remote, unauthenticated attacker to inject arbitrary content (including script) into web pages, potentially reading or modifying page data and relate...

4.3CVSS5.6AI score0.03032EPSS
CVE
CVE
added 2011/07/28 6:0 p.m.50 views

CVE-2011-1339

CVE-2011-1339 affects Google Search Appliance (GSA) before version 5.0. The vulnerability is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary JavaScript/HTML via unspecified vectors in the web interface. Impact described as arbitrary script execution in a user’s ...

4.3CVSS5.7AI score0.00489EPSS