CVE-2005-3758

Publication date

2005-11-22 21:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to inject arbitrary Javascript, and possibly other web script or HTML, via a proxystylesheet variable that contains a malicious XSLT style sheet.