Cross-site Scripting Vulnerability in Google Mini and Search Appliances
CVE-2005-3754

Currently unrated

Key Information:

Vendor

Google
Status
Mini Search Appliance
Search Appliance
Vendor
CVE Published:
22 November 2005

What is CVE-2005-3754?

A cross-site scripting (XSS) vulnerability exists in the Google Mini Search Appliance and potentially the Google Search Appliance. This flaw allows malicious attackers to inject arbitrary JavaScript and potentially other web scripts or HTML through the proxystylesheet variable. The injected code may be executed within the resulting error message, which can lead to unauthorized access or manipulation of sensitive information, impacting the security and integrity of the affected systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/17644
third-party-advisoryx_refsource_SECUNIA
http://metasploit.com/research/vulns/google_proxystylesheet/
x_refsource_MISC
http://www.securityfocus.com/archive/1/417310/30/0/threaded
mailing-listx_refsource_BUGTRAQ

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.