New cross-site scripting type vulnerability in Google Mini Search Appliance has been reported. This Secunia security advisory has some details: http://secunia.com/advisories/26946/
Version 3.4.14 has been confirmed as affected.
This time, Google has provided a workaround available at https://support.google.com/enterprise/doc/mini/advisories/ga-2007-09-m.html (for registered customers only)
|