CVE-2008-4794

Opera before 9.62 is affected by CVE-2008-4794 due to flaws in History Search results handling that allow remote code execution. The vulnerability is listed among multiple issues in Opera’s GLSA-200811-01 and Gentoo advisory GLSA-200811-01, with affected versions prior to 9.62. The OpenVAS entrie...

CVE-2008-4795

The links panel in Opera before 9.62 processes Javascript within the context of the "outermost page" of a frame, which allows remote attackers to inject arbitrary web script or HTML via cross-site scripting XSS attacks...

CVE-2008-4794

Opera before 9.62 allows remote attackers to execute arbitrary commands via the History Search results page, a different vulnerability than CVE-2008-4696...

Opera 9.61 - opera:historysearch Code Execution

Opera 9.61 - opera:historysearch Code Execution function x window.open'opera:historysearch?q=%2A"&p=1&s=1'; window.setTimeout"location.href='mailto:'",4000; Click me... img src='x' onerror='evalString.fromCharCode113,61,100,11...

Opera 9.61 opera:historysearch Code Execution Exploit PoC

Exploit for unknown platform in category remote exploits ========================================================= Opera 9.61 opera:historysearch Code Execution Exploit PoC ========================================================= function x window.open'opera:historysearch?q=%2A"&p=1&s=1';...

Opera Web Browser Multiple XSS Vulnerability (Windows)

The host is installed with Opera web browser and is prone to multiple Cross Site Scripting XSS Vulnerability. OpenVAS Vulnerability Test $Id: gboperamultvulnoct08win.nasl 6519 2017-07-04 14:08:14Z cfischer $ Opera Web Browser Multiple XSS Vulnerability Windows Authors: Chandan S Copyright:...

Opera < 9.60 RCE and Information Disclosure Vulnerabilities - Windows

Opera Web Browser is prone to remote code execution RCE and information disclosure vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Opera 9.61 - &#039;opera:historysearch&#039; Code Execution

function x window.open'opera:historysearch?q=%2A"&p=1&s=1'; window.setTimeout"location.href='mailto:'",4000; Click me... i...

Opera Web Browser Multiple XSS Vulnerability (Linux)

The host is installed with Opera Web Browser and is prone to multiple Cross Site Scripting XSS Vulnerability. OpenVAS Vulnerability Test $Id: gboperamultvulnoct08lin.nasl 6539 2017-07-05 12:02:14Z cfischer $ Opera Web Browser Multiple XSS Vulnerability Linux Authors: Chandan S Copyright: Copyrigh...

Opera Remote Code Execution and Information Disclosure Vulnerabilities (Linux)

The host is installed with Opera Web Browser and is prone to remote code execution and information disclosure Vulnerabilities. OpenVAS Vulnerability Test $Id: gboperainfodiscncodeexeclin.nasl 6539 2017-07-05 12:02:14Z cfischer $ Opera Remote Code Execution and Information Disclosure Vulnerabiliti...

Opera Remote Code Execution and Information Disclosure Vulnerabilities (Windows)

The host is installed with Opera Web Browser and is prone to remote code execution and information disclosure Vulnerabilities. OpenVAS Vulnerability Test $Id: gboperainfodiscncodeexecwin.nasl 6519 2017-07-04 14:08:14Z cfischer $ Opera Remote Code Execution and Information Disclosure Vulnerabiliti...

Opera Web Browser 9.x - History Search and Links Panel Cross-Site Scripting

source: https://www.securityfocus.com/bid/31991/info Opera Web Browser is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user...

Opera Web Browser Multiple XSS Vulnerabilities - Linux

Opera Web Browser is prone to multiple Cross Site Scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Opera Web Browser 9.x - History Search and Links Panel Cross-Site Scripting

Opera Web Browser 9.x - History Search and Links Panel Cross-Site Scripting source: https://www.securityfocus.com/bid/31991/info Opera Web Browser is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these...

Cross-Site Scripting vulnerability in Opera

Здравствуйте 3APA3A! Сообщаю вам о найденной мною Cross-Site Scripting уязвимости в Opera. При сохранении страницы со “специальным” URL, в коде страницы сохраняется XSS код. И происходит выполнение XSS кода при открытии данной страницы причём её открытии в любом браузере, не только в Opera. XSS:...

Opera < 9.62 Multiple Vulnerabilities

Binary data 4729.prm...

Opera Web Browser Multiple XSS Vulnerabilities - Windows

Opera web browser is prone to multiple Cross Site Scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Opera < 9.60 RCE and Information Disclosure Vulnerabilities - Linux

Opera Web Browser is prone to remote code execution RCE and information disclosure vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

FreeBSD : opera -- multiple vulnerabilities (f5c4d7f7-9f4b-11dd-bab1-001999392805)

Opera reports : Certain constructs are not escaped correctly by Opera's History Search results. These can be used to inject scripts into the page, which can then be used to look through the user's browsing history, including the contents of the pages they have visited. These may contain sensitive...

Opera Web Browser HTML注入和跨站脚本漏洞

BUGTRAQ ID: 31842 CNCAN ID：CNCAN-2008102207 Opera Web Browser是一款开放源代码的WEB浏览器。 Opera Web Browser存在多个安全问题，远程攻击者可以利用漏洞获得敏感信息。 -如果链接使用JavaScript URL触发Opera快速转发功能，当用户激活快速转发，脚本将运行在当前页面上，当页面处于帧中，脚本将不正确的最外面页面上执行，而不是URL定位的页面上，这可导致脚本以不相关内容上下文执行。 -当Opera预览新FEED时，部分脚本没有正确阻止，这些脚本能够订阅用户到任意攻击者选择的FEED...