CVE-2010-4580Sensitive Information Exposure in Browser

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.7%
top 27.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedDec 22
Latest updateMay 17

Description

Opera before 11.00 does not clear WAP WML form fields after manual navigation to a new web site, which allows remote attackers to obtain sensitive information via an input field that has the same name as an input field on a previously visited web site.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDopera/opera_browser11.00+72

🔴Vulnerability Details

2
GHSA
GHSA-gxpr-c334-33x7: Opera before 112022-05-17
CVEList
CVE-2010-4580: Opera before 112010-12-22
CVE-2010-4580 — Sensitive Information Exposure | cvebase