Описание
Opera before 11.00 does not clear WAP WML form fields after manual navigation to a new web site, which allows remote attackers to obtain sensitive information via an input field that has the same name as an input field on a previously visited web site.
Opera before 11.00 does not clear WAP WML form fields after manual navigation to a new web site, which allows remote attackers to obtain sensitive information via an input field that has the same name as an input field on a previously visited web site.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2010-4580
- http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
- http://secunia.com/advisories/42653
- http://www.opera.com/docs/changelogs/mac/1100
- http://www.opera.com/docs/changelogs/unix/1100
- http://www.opera.com/docs/changelogs/windows/1100
- http://www.opera.com/support/kb/view/979
Связанные уязвимости
Opera before 11.00 does not clear WAP WML form fields after manual navigation to a new web site, which allows remote attackers to obtain sensitive information via an input field that has the same name as an input field on a previously visited web site.