Vulnerabilities > Google > Toolbar > 1.1.45

DATE CVE VULNERABILITY TITLE RISK
2004-12-31 CVE-2004-2475 HTML Injection vulnerability in Google Toolbar About.HTML
Cross-site scripting (XSS) vulnerability in Google Toolbar 2.0.114.1 allows remote attackers to inject arbitrary web script via about.html in the About section.
network
google
4.3
2003-04-11 CVE-2002-1443 Information Disclosure vulnerability in Multiple Vendor Toolbar Keypress Monitoring
The Google toolbar 1.1.58 and earlier allows remote web sites to monitor a user's input into the toolbar via an "onkeydown" event handler.
network
low complexity
google
5.0
2003-04-11 CVE-2002-1442 Unspecified vulnerability in Google Toolbar
The Google toolbar 1.1.58 and earlier allows remote web sites to perform unauthorized toolbar operations including script execution and file reading in other zones such as "My Computer" by opening a window to tools.google.com or the res: protocol, then using script to modify the window's location to the toolbar's configuration URL, which bypasses the origin verification check.
network
low complexity
google
7.5