Описание
Opera Browser 7.23, and other versions before 7.50, updates the address bar as soon as the user clicks a link, which allows remote attackers to redirect to other sites via the onUnload attribute.
Ссылки
- Broken LinkPatchVendor Advisory
- Broken LinkVendor Advisory
- Broken LinkPatch
- Broken LinkPatchThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Broken LinkPatchVendor Advisory
- Broken LinkVendor Advisory
- Broken LinkPatch
- Broken LinkPatchThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 7.50 (исключая)
cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00917
Низкий
5 Medium
CVSS2
Дефекты
CWE-601
Связанные уязвимости
github
почти 4 года назад
Opera Browser 7.23, and other versions before 7.50, updates the address bar as soon as the user clicks a link, which allows remote attackers to redirect to other sites via the onUnload attribute.
EPSS
Процентиль: 76%
0.00917
Низкий
5 Medium
CVSS2
Дефекты
CWE-601