CVE-2008-7297
Opera browsers (Windows, macOS, Linux) are affected by CVE-2008-7297. The issue allows an attacker in a TLS-stripped or HTTP context to overwrite or delete cookies via a Set-Cookie header due to improper enforcement of HTTPS-only cookies, related to missing HSTS includeSubDomains. The vulnerabili...