Cross-site scripting (XSS) vulnerability on Google Search Appliance (GSA) devices prior to 7.0.14.G.216 and 7.2 prior to 7.2.0.G.114, when dynamic navigation is configured, allows remote malicious users to inject arbitrary web script or HTML via input included in a SCRIPT element.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google search appliance software |