The host is installed with Opera before 9.62 and is prone to cross-site scripting vulnerability. A flaw is present in the application, which processes Javascript within the context of the "outermost page" of a frame. Successful exploitation allows remote attackers to inject arbitrary web script or HTML via cross-site scripting (XSS) attacks.