Published: 31/12/2002 Updated: 05/09/2008

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in the FTP view feature in Opera 6.0 and 6.01 up to and including 6.04 allows remote malicious users to inject arbitrary web script or HTML via the title tag of an FTP URL.

Vulnerable Product	Search on Vulmon	Subscribe to Product
opera software opera web browser 6.0.1
opera software opera web browser 6.0.2
opera software opera web browser 6.0.3
opera software opera web browser 6.0.4
opera software opera web browser 6.0

source: wwwsecurityfocuscom/bid/5401/info A cross-site scripting vulnerability in Opera has been reported When viewing the contents of an FTP site as web content, the data within <title> tags is not sanitized An attacker may embed javascript between open and closing <title> tags in a FTP URL This vulnerability has been co ...

CWE-79 http://online.securityfocus.com/archive/1/286151 http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0061.html http://www.opera.com/windows/changelogs/605/?session=b2a9ea38c710788c23970ba2c9a34d47 http://www.securityfocus.com/bid/5401 http://www.iss.net/security_center/static/9757.php https://nvd.nist.gov https://www.exploit-db.com/exploits/21681/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-2358

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect