Cross site scripting

2012-06-1419:55:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

56.6%

JSON

Opera before 11.65 does not properly restrict the reading of JSON strings, which allows remote attackers to perform cross-domain loading of JSON resources and consequently obtain sensitive information via a crafted web site.

CPENameOperatorVersion
opera_browsereq7.01
opera_browsereq9.27
opera_browsereq7.23
opera_browsereq9.50 beta1
opera_browsereq9.02
opera_browsereq7.03
opera_browsereq10.10
opera_browsereq7.53
opera_browsereq8.50
opera_browsereq9.50

Name	Operator	Version
opera_browser	eq	7.01
opera_browser	eq	9.27
opera_browser	eq	7.23
opera_browser	eq	9.50 beta1
opera_browser	eq	9.02
opera_browser	eq	7.03
opera_browser	eq	10.10
opera_browser	eq	7.53
opera_browser	eq	8.50
opera_browser	eq	9.50