Home

CVE-2008-4697

Description

The Fast Forward feature in Opera before 9.61, when a page is located in a frame, executes a javascript: URL in the context of the outermost page instead of the page that contains this URL, which allows remote attackers to conduct cross-site scripting (XSS) attacks.

Risk Information

Base Score
6.1
MODERATE
Vector
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS Score
Exploitation Probability
0.787

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities affected in Opera 9.60Windows
Multiple vulnerabilities affected in Opera 9.60 (For Ubuntu)Linux
Multiple vulnerabilities affected in Opera 9.60 (For Debian)Linux
Multiple vulnerabilities affected in Opera 9.60 (For Centos)Linux
Multiple vulnerabilities affected in Opera 9.60 (For RedHat)Linux
Multiple vulnerabilities affected in Opera 9.60 (For Suse)Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234