Opera : Security vulnerabilities, CVEs published in February 2008

Copy

CVE-2008-1082

Opera before 9.26 allows remote attackers to "bypass sanitization filters" and conduct cross-site scripting (XSS) attacks via crafted attribute values in an XML document, which are not properly handled during DOM presentation.

Max CVSS

4.3

EPSS Score

0.31%

Published

2008-02-29

Updated

2012-06-07

CVE-2008-1081

Opera before 9.26 allows user-assisted remote attackers to execute arbitrary script via images that contain custom comments, which are treated as script when the user displays the image properties.

Max CVSS

6.8

EPSS Score

1.75%

Published

2008-02-29

Updated

2012-06-07

CVE-2008-1080

Opera before 9.26 allows user-assisted remote attackers to read arbitrary files by tricking a user into typing the characters of the target filename into a file input.

Max CVSS

6.8

EPSS Score

1.69%

Published

2008-02-29

Updated

2012-06-07

3 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!