2 matches found
SUSE CVE-2009-3266
Opera before 10.01 does not properly restrict HTML in a 1 RSS or 2 Atom feed, which allows remote attackers to conduct cross-site scripting XSS attacks, and conduct cross-zone scripting attacks involving the Feed Subscription Page to read feeds or create feed subscriptions, via a crafted feed,...
FreeBSD : opera -- multiple vulnerabilities (2fda6bd2-c53c-11de-b157-001999392805)
Opera Team Reports : - Fixed an issue where certain domain names could allow execution of arbitrary code, as reported by Chris Weber of Casaba Security - Fixed an issue where scripts can run on the feed subscription page, as reported by Inferno %NASLMINLEVEL 70300 C Tenable Network Security, Inc...