[Forgot Password]
Login  Register Subscribe

24128

 
 

131615

 
 

111666

 
 

909

 
 

87321

 
 

136

 
 
Paid content will be excluded from the download.

Filter
Matches : 12505 Download | Alert*

The news-feed preview feature in Opera before 10.61 does not properly remove scripts, which allows remote attackers to force subscriptions to arbitrary feeds via crafted content.

Opera before 10.61 does not properly suppress clicks on download dialogs that became visible after a recent tab change, which allows remote attackers to conduct clickjacking attacks, and consequently execute arbitrary code, via vectors involving (1) closing a tab or (2) hiding a tab, a related issue to CVE-2005-2407.

Opera before 10.63 does not properly select the security context of JavaScript code associated with an error page, which allows user-assisted remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web site.

Opera before 10.63 does not ensure that the portion of a URL shown in the Address Bar contains the beginning of the URL, which allows remote attackers to spoof URLs by changing a window's size.

Opera before 10.63 does not prevent interpretation of a cross-origin document as a CSS stylesheet when the document lacks a CSS token sequence, which allows remote attackers to obtain sensitive information via a crafted document.

Opera before 10.63 allows remote attackers to cause a denial of service (application crash) via a Flash movie with a transparent Window Mode (aka wmode) property, which is not properly handled during navigation away from the containing HTML document.

The host is installed with Opera 11.11 or earlier and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle IFRAME element. Successful exploitation allow remote attackers to cause a denial of service.

The host is installed with Opera before 11.10 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle a HTML document that has an empty parameter value for an embedded Java applet. Successful exploitation allow remote attackers to cause a denial of service.

The host is installed with Opera before 11.10 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle hidden animated GIF images. Successful exploitation allow remote attackers to cause a denial of service (CPU consumption).

The host is installed with Opera before 11.10 and is prone to unspecified vulnerability vulnerability. A flaw is present in the application which fails to handle unknown content on a web page. Successful exploitation allow remote attackers to cause a denial of service (application crash).


Pages:      Start    7    8    9    10    11    12    13    14    15    16    17    18    19    20    ..   1250

© SecPod Technologies