Google Site Search Project: >> Google Site Search Module >> 6.x-1.x Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in Google Site Search module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.10 for Drupal allows remote attackers to inject arbitrary web script or HTML by causing crafted data to be returned by the Google API.
CVSS Score
4.3
EPSS Score
0.003
Published
2013-10-09