Opera : Security Vulnerabilities, CVEs, Published In February 2008
Opera before 9.26 allows remote attackers to "bypass sanitization filters" and conduct cross-site scripting (XSS) attacks via crafted attribute values in an XML document, which are not properly handled during DOM presentation.
Max CVSS
4.3
EPSS Score
0.31%
Published
2008-02-29
Updated
2012-06-07
Opera before 9.26 allows user-assisted remote attackers to execute arbitrary script via images that contain custom comments, which are treated as script when the user displays the image properties.
Max CVSS
6.8
EPSS Score
1.75%
Published
2008-02-29
Updated
2012-06-07
Opera before 9.26 allows user-assisted remote attackers to read arbitrary files by tricking a user into typing the characters of the target filename into a file input.
Max CVSS
6.8
EPSS Score
1.69%
Published
2008-02-29
Updated
2012-06-07
3 vulnerabilities found