CVE-2006-6223 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-6223

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in Google Search Appliance and Google Mini allows remote attackers to inject arbitrary web script or HTML via a UTF-7 encoded q parameter.

Affected Software

Name	Vendor	Start Version	End Version
Mini_search_appliance	Google	*	*
Search_appliance	Google	*	*

References

http://secunia.com/advisories/23239
http://securitytracker.com/id?1017317
http://sla.ckers.org/forum/read.php?3%2C3109
http://www.kb.cert.org/vuls/id/989144
http://www.securityfocus.com/bid/21438
http://www.vupen.com/english/advisories/2006/4789
https://exchange.xforce.ibmcloud.com/vulnerabilities/30647