Total vulnerabilities in the database
The child frames in Opera 9 before 9.20 inherit the default charset from the parent window when a charset is not specified in an HTTP Content-Type header or META tag, which allows remote attackers to conduct cross-site scripting (XSS) attacks, as demonstrated using the UTF-7 character set.
Software | From | Fixed in |
---|---|---|
opera / opera_browser | 9.02 | 9.02.x |
opera / opera_browser | 9.12 | 9.12.x |
opera / opera_browser | 9.20 | 9.20.x |
opera / opera_browser | 9.0-beta1 | 9.0-beta1.x |
opera / opera_browser | 9.20-beta1 | 9.20-beta1.x |
opera / opera_browser | 9.0-beta2 | 9.0-beta2.x |
opera / opera_browser | 9.01 | 9.01.x |
opera / opera_browser | 9.0 | 9.0.x |
opera / opera_browser | 9.10 | 9.10.x |