op-browser is vulnerable to remote code execution (RCE). The attack exist because it does not validate the user-provided value to url
parameter, allowing an attacker to inject arbitrary code through it.
CPE | Name | Operator | Version |
---|---|---|---|
op-browser | le | 1.0.9 |