CVE-2008-4698

  • Last update: Apr 13, 2023

Description

Opera before 9.61 does not properly block scripts during preview of a news feed, which allows remote attackers to create arbitrary new feed subscriptions and read the contents of arbitrary feeds.

Software From Fixed in
opera / opera_browser 7.01 7.01.x
opera / opera_browser 9.27 9.27.x
opera / opera_browser 7.23 7.23.x
opera / opera_browser 9.50-beta1 9.50-beta1.x
opera / opera_browser 9.02 9.02.x
opera / opera_browser 7.03 7.03.x
opera / opera_browser 7.53 7.53.x
opera / opera_browser 8.50 8.50.x
opera / opera_browser 9.50 9.50.x
opera / opera_browser 9.24 9.24.x
opera / opera_browser 5.0-beta2 5.0-beta2.x
opera / opera_browser 5.11 5.11.x
opera / opera_browser 6.1 6.1.x
opera / opera_browser 7.20 7.20.x
opera / opera_browser 6.02 6.02.x
opera / opera_browser 9.51 9.51.x
opera / opera_browser 5.02 5.02.x
opera / opera_browser 9.26 9.26.x
opera / opera_browser 5.10 5.10.x
opera / opera_browser 8.53 8.53.x
opera / opera_browser 9.12 9.12.x
opera / opera_browser 7.11-beta2 7.11-beta2.x
opera / opera_browser 8.0 8.0.x
opera / opera_browser 6.0-beta3 6.0-beta3.x
opera / opera_browser 6.04 6.04.x
opera / opera_browser 8.54 8.54.x
opera / opera_browser 6.11 6.11.x
opera / opera_browser 5.0-beta4 5.0-beta4.x
opera / opera_browser 6.05 6.05.x
opera / opera_browser 8.02 8.02.x
opera / opera_browser 9.20 9.20.x
opera / opera_browser 7.50-beta1 7.50-beta1.x
opera / opera_browser 5.12 5.12.x
opera / opera_browser 9.21 9.21.x
opera / opera_browser 7.10 7.10.x
opera / opera_browser 9.0-beta1 9.0-beta1.x
opera / opera_browser 6.0-tp3 6.0-tp3.x
opera / opera_browser 9.23 9.23.x
opera / opera_browser 6.0-tp1 6.0-tp1.x
opera / opera_browser 8.0-beta3 8.0-beta3.x
opera / opera_browser 5.0-beta8 5.0-beta8.x
opera / opera_browser 7.0-beta1_v2 7.0-beta1_v2.x
opera / opera_browser 8.51 8.51.x
opera / opera_browser 5.0-beta5 5.0-beta5.x
opera / opera_browser 7.50 7.50.x
opera / opera_browser 7.02 7.02.x
opera / opera_browser 7.21 7.21.x
opera / opera_browser 6.0-tp2 6.0-tp2.x
opera / opera_browser 5.0-beta7 5.0-beta7.x
opera / opera_browser 7.20-beta7 7.20-beta7.x
opera / opera_browser 7.54-update1 7.54-update1.x
opera / opera_browser 9.20-beta1 9.20-beta1.x
opera / opera_browser 7.60 7.60.x
opera / opera_browser 7.11 7.11.x
opera / opera_browser 7.0-beta2 7.0-beta2.x
opera / opera_browser 7.54 7.54.x
opera / opera_browser 9.0-beta2 9.0-beta2.x
opera / opera_browser 6.03 6.03.x
opera / opera_browser 7.0-beta1 7.0-beta1.x
opera / opera_browser 9.22 9.22.x
opera / opera_browser 6.0-beta1 6.0-beta1.x
opera / opera_browser 9.01 9.01.x
opera / opera_browser 9.0 9.0.x
opera / opera_browser 5.0 5.0.x
opera / opera_browser 9.25 9.25.x
opera / opera_browser 7.51 7.51.x
opera / opera_browser 8.0-beta2 8.0-beta2.x
opera / opera_browser 9.10 9.10.x
opera / opera_browser 9.50-beta2 9.50-beta2.x
opera / opera_browser 6.12 6.12.x
opera / opera_browser 9.60-beta1 9.60-beta1.x
opera / opera_browser 6.0-beta2 6.0-beta2.x
opera / opera_browser 5.0-beta3 5.0-beta3.x
opera / opera_browser 6.01 6.01.x
opera / opera_browser 8.52 8.52.x
opera / opera_browser - 9.60.x
opera / opera_browser 6.06 6.06.x
opera / opera_browser 7.52 7.52.x
opera / opera_browser 7.54-update2 7.54-update2.x
opera / opera_browser 5.0-beta6 5.0-beta6.x
opera / opera_browser 8.01 8.01.x
opera / opera_browser 6.1-beta1 6.1-beta1.x
opera / opera_browser 9.52 9.52.x
opera / opera_browser 8.0-beta1 8.0-beta1.x
opera / opera_browser 6.0 6.0.x
opera / opera_browser 7.22 7.22.x
opera / opera_browser 7.10-beta1 7.10-beta1.x
opera / opera_browser 7.0 7.0.x

Details

    • Severity: Medium
  • CVE: CVE-2008-4698
  • Published: Oct 24, 2008
  • Updated: Apr 13, 2023
  • Exploit:

CVSS v2

  • Severity: Medium
  • Score: 5.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:N

CWEs