Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file browser vulnerabilities and exploits
(subscribe to this query)
2.6
CVSSv2
CVE-2004-2083
Opera Web Browser 7.0 up to and including 7.23 allows remote malicious users to trick users into executing a malicious file by embedding a CLSID in the file name, which causes the malicious file to appear as a trusted file type, aka "File Download Extension Spoofing."
Opera Opera Browser
9.3
CVSSv2
CVE-2020-9413
The MFT Browser file transfer client and MFT Browser admin client components of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center and TIBCO Managed File Transfer Internet Server contain a vulnerability that theoretically allows an malicious user to craft an UR...
Tibco Managed File Transfer Internet Server
Tibco Managed File Transfer Command Center
5
CVSSv2
CVE-2005-3041
Unspecified "drag-and-drop vulnerability" in Opera Web Browser prior to 8.50 on Windows allows "unintentional file uploads."
Opera Opera Browser
2.6
CVSSv2
CVE-2004-1490
Opera 7.54 and previous versions allows remote malicious users to spoof file types in the download dialog via dots and non-breaking spaces (ASCII character code 160) in the (1) Content-Disposition or (2) Content-Type headers.
Opera Opera Browser
9.3
CVSSv2
CVE-2007-3929
Use-after-free vulnerability in the BitTorrent support in Opera prior to 9.22 allows user-assisted remote malicious users to execute arbitrary code via a crafted header in a torrent file, which leaves a dangling pointer to an invalid object.
Opera Opera Browser
5.1
CVSSv2
CVE-2005-2407
A design error in Opera 8.01 and previous versions allows user-assisted malicious users to execute arbitrary code by overlaying a malicious new window above a file download dialog box, then tricking the user into double-clicking on the "Run" button, aka "link hijac...
Opera Opera Browser
9.3
CVSSv2
CVE-2007-2809
Buffer overflow in the transfer manager in Opera prior to 9.21 for Windows allows user-assisted remote malicious users to execute arbitrary code via a crafted torrent file. NOTE: due to the lack of details, it is not clear if this is the same issue as CVE-2007-2274.
Opera Opera Browser
4.3
CVSSv2
CVE-2017-17859
Samsung Internet Browser 6.2.01.12 allows remote malicious users to bypass the Same Origin Policy, and conduct UXSS attacks to obtain sensitive information, via vectors involving an IFRAME element inside XSLT data in one part of an MHTML file. Specifically, JavaScript code in ano...
Samsung Internet Browser 6.2.01.12
5
CVSSv2
CVE-2005-4718
Opera 8.02 and previous versions allows remote malicious users to cause a denial of service (client crash) via (1) a crafted HTML file with a "content: url(0);" style attribute, a "bodyA" tag, a long string, and a "u" tag with a long attribute, as de...
Opera Opera Browser
2 EDB exploits
5
CVSSv2
CVE-2005-2405
Opera 8.01, when the "Arial Unicode MS" font (ARIALUNI.TTF) is installed, does not properly handle extended ASCII characters in the file download dialog box, which allows remote malicious users to spoof file extensions and possibly trick users into executing arbitrary c...
Opera Opera Browser 8.01
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »