CVE-2008-4195 — Browser vulnerability

CWE-2644 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
0.7%
top 28.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedSep 27
Latest updateMay 2

Description

Opera before 9.52 does not properly restrict the ability of a framed web page to change the address associated with a different frame, which allows remote attackers to trigger the display of an arbitrary address in a frame via unspecified use of web script.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

â–¶NVDopera/opera_browser9.51+53

🔴Vulnerability Details

2
GHSA
GHSA-56hh-jx7w-mxrr: Opera before 9↗2022-05-02
â–¶
CVEList
CVE-2008-4195: Opera before 9↗2008-09-27
â–¶

💥Exploits & PoCs

1
Exploit-DB
Scout Portal Toolkit 1.4.0 - 'ParentId' SQL Injection↗2008-05-04
â–¶
CVE-2008-4195 — Opera Browser vulnerability | cvebase