cbcvebase.
CVE-2005-2406
published 2005-08-01

CVE-2005-2406: Opera 8.01 allows remote attackers to conduct cross-site scripting (XSS) attacks or modify which files are uploaded by tricking a user into dragging an image…

PriorityP414medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
2.23%
80.6th percentile
Opera 8.01 allows remote attackers to conduct cross-site scripting (XSS) attacks or modify which files are uploaded by tricking a user into dragging an image that is a "javascript:" URI.

Affected

1 ranges
VendorProductVersion rangeFixed in
operaopera_browser
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.