Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opera vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2019-18624
Opera Mini for Android allows malicious users to bypass intended restrictions on .apk file download/installation via an RTLO (aka Right to Left Override) approach, as demonstrated by misinterpretation of malicious%E2%80%AEtxt.apk as maliciouskpa.txt. This affects 44.1.2254.142553...
Opera Mini 44.1.2254.142553
Opera Mini 44.1.2254.142659
Opera Mini 44.1.2254.143214
7.5
CVSSv2
CVE-2019-10086
In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an malicious user to access the classloader via the class property available on all Java objects. We, however were not using this by default characteristic of th...
Apache Commons Beanutils
Apache Nifi 1.14.0
Apache Nifi 1.15.0
Debian Debian Linux 8.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server Aus 7.7
Redhat Enterprise Linux Server Tus 7.7
Redhat Enterprise Linux Eus 7.7
Redhat Jboss Enterprise Application Platform 7.2.0
Oracle Retail Xstore Point Of Service 15.0
Oracle Flexcube Private Banking 12.1.0
Oracle Banking Platform 2.4.0
Oracle Retail Xstore Point Of Service 7.1
Oracle Flexcube Private Banking 12.0.0
Oracle Service Bus 11.1.1.9.0
Oracle Fusion Middleware 11.1.1.9
7.5
CVSSv2
CVE-2013-6453
MediaWiki prior to 1.19.10, 1.2x prior to 1.21.4, and 1.22.x prior to 1.22.1 does not properly sanitize SVG files, which allows remote malicious users to have unspecified impact via invalid XML.
Mediawiki Mediawiki 1.22.0
Mediawiki Mediawiki 1.21.2
Mediawiki Mediawiki 1.21.1
Mediawiki Mediawiki 1.21.3
Mediawiki Mediawiki 1.21
Mediawiki Mediawiki 1.19.1
Mediawiki Mediawiki 1.19.3
Mediawiki Mediawiki 1.19.2
Mediawiki Mediawiki 1.19.4
Mediawiki Mediawiki 1.19
Mediawiki Mediawiki 1.19.0
Mediawiki Mediawiki 1.19.5
Mediawiki Mediawiki 1.19.6
Mediawiki Mediawiki 1.19.7
Mediawiki Mediawiki 1.19.8
Mediawiki Mediawiki
7.5
CVSSv2
CVE-2007-5540
Unspecified vulnerability in Opera prior to 9.24 allows remote malicious users to overwrite functions on pages from other domains and bypass the same-origin policy via unknown vectors.
Opera Opera Browser 9.22
Opera Opera Browser 9.21
Opera Opera Browser 9.20
Opera Opera Browser 8.01
Opera Opera Browser 8.51
Opera Opera Browser 8.53
Opera Opera Browser 8.02
Opera Opera Browser 8.50
Opera Opera Browser 7.03
Opera Opera Browser 7.54
Opera Opera Browser 7.10
Opera Opera Browser 7.11
Opera Opera Browser 6.0
Opera Opera Browser 6.04
Opera Opera Browser 6.05
Opera Opera Browser 5.0
Opera Opera Browser 4.00
Opera Opera Browser 3.62
Opera Opera Browser 3.61
Opera Opera Browser 1.00
Opera Opera Browser
Opera Opera Browser 9.01
7.5
CVSSv2
CVE-2007-1737
Opera 9.10 does not check URLs embedded in (1) object or (2) iframe HTML tags against the phishing site blacklist, which allows remote malicious users to bypass phishing protection.
Opera Opera Browser 9.10
7.5
CVSSv2
CVE-2006-3198
Integer overflow in Opera 8.54 and previous versions allows remote malicious users to execute arbitrary code via a JPEG image with large height and width values, which causes less memory to be allocated than intended.
Opera Opera Browser
7.5
CVSSv2
CVE-2005-3750
Opera prior to 8.51 on Linux and Unix systems allows remote malicious users to execute arbitrary code via shell metacharacters (backticks) in a URL that another product provides in a command line argument when launching Opera.
Opera Opera Browser
7.5
CVSSv2
CVE-2005-1475
The XMLHttpRequest object in Opera 8.0 Final Build 1095 allows remote malicious users to bypass access restrictions and perform unauthorized actions on other domains via a redirect.
Opera Opera Browser
7.5
CVSSv2
CVE-2005-1139
Opera 8 Beta 3, when using first-generation vetted digital certificates, displays the Organizational information of an SSL certificate, which is easily spoofed and can facilitate phishing attacks.
Opera Opera Browser 8.0
7.5
CVSSv2
CVE-2005-0233
The International Domain Name (IDN) support in Firefox 1.0, Camino .8.5, and Mozilla prior to 1.7.6 allows remote malicious users to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from o...
Mozilla Camino 0.8.5
Mozilla Firefox 1.0
Mozilla Mozilla
Omnigroup Omniweb 5
Opera Opera Browser
Opera Software Opera Web Browser 7.54
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »