Unrated severityNVD Advisory· Published Oct 6, 2007· Updated Jun 16, 2026
CVE-2007-5255
CVE-2007-5255
Description
Cross-site scripting (XSS) vulnerability in Google Mini Search Appliance 3.4.14 allows remote attackers to inject arbitrary web script or HTML via the ie parameter to the /search URI.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:h:google:mini_search_appliance:3.4.14:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:google:mini_search_appliance:3.4.14:*:*:*:*:*:*:*
- (no CPE)range: 3.4.14
Patches
Vulnerability mechanics
References
8- secunia.com/advisories/26946nvdPatchVendor Advisory
- securityvulns.ru/Sdocument32.htmlnvd
- websecurity.com.ua/1368/nvd
- www.securityfocus.com/archive/1/482006/100/0/threadednvd
- www.securityfocus.com/bid/25894nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/3327nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/36907nvd
News mentions
0No linked articles in our index yet.