Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Opera_browser
(Opera)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 282 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2010-12-22 | CVE-2010-4582 | Opera before 11.00 does not properly handle security policies during updates to extensions, which might allow remote attackers to bypass intended access restrictions via unspecified vectors. | Opera_browser | N/A | ||
| 2010-12-22 | CVE-2010-4581 | Unspecified vulnerability in Opera before 11.00 has unknown impact and attack vectors, related to "a high severity issue." | Opera_browser | N/A | ||
| 2010-12-22 | CVE-2010-4580 | Opera before 11.00 does not clear WAP WML form fields after manual navigation to a new web site, which allows remote attackers to obtain sensitive information via an input field that has the same name as an input field on a previously visited web site. | Opera_browser | N/A | ||
| 2010-12-22 | CVE-2010-4579 | Opera before 11.00 does not properly constrain dialogs to appear on top of rendered documents, which makes it easier for remote attackers to trick users into interacting with a crafted web site that spoofs the (1) security information dialog or (2) download dialog. | Opera_browser | N/A | ||
| 2010-10-21 | CVE-2010-4050 | Opera before 10.63 allows remote attackers to cause a denial of service (memory corruption) by referencing an SVG document in an IMG element. | Opera_browser | N/A | ||
| 2010-10-21 | CVE-2010-4049 | Opera before 10.63 allows remote attackers to cause a denial of service (application crash) via a Flash movie with a transparent Window Mode (aka wmode) property, which is not properly handled during navigation away from the containing HTML document. | Opera_browser | N/A | ||
| 2010-10-21 | CVE-2010-4048 | Opera before 10.63 allows user-assisted remote web servers to cause a denial of service (application crash) by sending a redirect during the saving of a file. | Opera_browser | N/A | ||
| 2010-10-21 | CVE-2010-4047 | Opera before 10.63 does not properly select the security context of JavaScript code associated with an error page, which allows user-assisted remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web site. | Opera_browser | N/A | ||
| 2010-10-21 | CVE-2010-4046 | Opera before 10.63 does not properly verify the origin of video content, which allows remote attackers to obtain sensitive information by using a video stream as HTML5 canvas content. | Opera_browser | N/A | ||
| 2010-10-21 | CVE-2010-4045 | Opera before 10.63 does not properly restrict web script in unspecified circumstances involving reloads and redirects, which allows remote attackers to spoof the Address Bar, conduct cross-site scripting (XSS) attacks, and possibly execute arbitrary code by leveraging the ability of a script to interact with a web page from (1) a different domain or (2) a different security context. | Opera_browser | N/A |