Opera 9.52 and previous versions, and 10.00 Beta 3 Build 1699, does not properly block data: URIs in Location headers in HTTP responses, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Location header that contains JavaScript sequences in a data:text/html URI or (2) entering a data:text/html URI with JavaScript sequences when specifying the content of a Location header. NOTE: the JavaScript executes outside of the context of the HTTP site.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
opera opera browser 9.10 |
||
opera opera browser 8.0 |
||
opera opera browser 8.01 |
||
opera opera browser 9.01 |
||
opera opera browser 10.00 |
||
opera opera browser 9.02 |
||
opera opera browser 9.0 |
||
opera opera browser 7.53 |
||
opera opera browser 8.53 |
||
opera opera browser 8.02 |
||
opera opera browser 9.22 |
||
opera opera browser 9.20 |
||
opera opera browser 9.21 |
||
opera opera browser 8.54 |
||
opera opera browser 7.60 |
||
opera opera browser 8.51 |
||
opera opera browser 8.52 |
||
opera opera browser 7.54 |
||
opera opera browser 7.0 |
||
opera opera browser 7.23 |
||
opera opera browser 8.50 |
||
opera opera browser 9.51 |
||
opera opera browser 9.12 |
||
opera opera browser |
Vulmon