Google : Security Vulnerabilities, CVEs, Published In 2006 CVSS score >= 2
Cross-site scripting (XSS) vulnerability in Google Search Appliance and Google Mini allows remote attackers to inject arbitrary web script or HTML via a UTF-7 encoded q parameter.
Max CVSS
4.3
EPSS Score
21.90%
Published
2006-12-02
Updated
2017-07-29
Google Mini 4.4.102.M.36 and earlier allows remote attackers to obtain sensitive information via a direct request for /search with an invalid client parameter, which reveals the path in an error message.
Max CVSS
5.0
EPSS Score
3.66%
Published
2006-09-27
Updated
2018-10-17
2 vulnerabilities found