5.7 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.0%
Opera before 9.26 allows remote attackers to “bypass sanitization filters” and conduct cross-site scripting (XSS) attacks via crafted attribute values in an XML document, which are not properly handled during DOM presentation.