Vulnerabilities > Opera > Opera Browser > 9.50
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-06-14 | CVE-2012-3557 | Permissions, Privileges, and Access Controls vulnerability in Opera Browser Opera before 11.65 does not properly restrict the reading of JSON strings, which allows remote attackers to perform cross-domain loading of JSON resources and consequently obtain sensitive information via a crafted web site. | 5.0 |
2012-06-14 | CVE-2012-3556 | Improper Input Validation vulnerability in Opera Browser Opera before 11.65 does not properly restrict the opening of a pop-up window in response to the first click of a double-click action, which makes it easier for user-assisted remote attackers to conduct cross-site scripting (XSS) attacks or execute arbitrary code via a crafted web site. | 9.3 |
2012-06-14 | CVE-2012-3555 | Unspecified vulnerability in Opera Browser Opera before 11.65 does not ensure that keyboard sequences are associated with a visible window, which makes it easier for user-assisted remote attackers to conduct cross-site scripting (XSS) attacks or execute arbitrary code via a crafted web site, related to a "hidden keyboard navigation" issue. | 7.6 |
2012-06-04 | CVE-2012-1251 | Cryptographic Issues vulnerability in Opera Browser Opera before 9.63 does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 5.8 |
2012-03-28 | CVE-2012-1931 | Permissions, Privileges, and Access Controls vulnerability in Opera Browser Opera before 11.62 on UNIX, when used in conjunction with an unspecified printing application, allows local users to overwrite arbitrary files via a symlink attack on a temporary file during printing. | 4.6 |
2012-03-28 | CVE-2012-1930 | Permissions, Privileges, and Access Controls vulnerability in Opera Browser Opera before 11.62 on UNIX uses world-readable permissions for temporary files during printing, which allows local users to obtain sensitive information by reading these files. | 4.6 |
2012-03-28 | CVE-2012-1929 | Improper Input Validation vulnerability in Opera Browser Opera before 11.62 on Mac OS X allows remote attackers to spoof the address field and security dialogs via crafted styling that causes page content to be displayed outside of the intended content area. | 6.4 |
2012-03-28 | CVE-2012-1928 | Improper Input Validation vulnerability in Opera Browser Opera before 11.62 allows remote attackers to spoof the address field by triggering a page reload followed by a redirect to a different domain. | 6.4 |
2012-03-28 | CVE-2012-1927 | Improper Input Validation vulnerability in Opera Browser Opera before 11.62 allows remote attackers to spoof the address field by triggering the launch of a dialog window associated with a different domain. | 6.4 |
2012-03-28 | CVE-2012-1926 | Information Exposure vulnerability in Opera Browser Opera before 11.62 allows remote attackers to bypass the Same Origin Policy via the (1) history.pushState and (2) history.replaceState functions in conjunction with cross-domain frames, leading to unintended read access to history.state information. | 5.0 |