Google Mini Search Appliance vulnerabilities
2 known vulnerabilities affecting google/mini_search_appliance.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2007-5255P4MEDIUMCVSS 4.3PoCv3.4.142007-10-06
CVE-2007-5255 [MEDIUM] CWE-79 CVE-2007-5255: Cross-site scripting (XSS) vulnerability in Google Mini Search Appliance 3.4.14 allows remote attack
Cross-site scripting (XSS) vulnerability in Google Mini Search Appliance 3.4.14 allows remote attackers to inject arbitrary web script or HTML via the ie parameter to the /search URI.
nvd
CVE-2006-5019P4MEDIUMCVSS 5.0PoC≤ 4.4.102.m.362006-09-27
CVE-2006-5019 [MEDIUM] CVE-2006-5019: Google Mini 4.4.102.M.36 and earlier allows remote attackers to obtain sensitive information via a d
Google Mini 4.4.102.M.36 and earlier allows remote attackers to obtain sensitive information via a direct request for /search with an invalid client parameter, which reveals the path in an error message.
nvd