CVE-2011-0681Browser vulnerability

3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.5%
top 32.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedJan 31
Latest updateMay 17

Description

The Cascading Style Sheets (CSS) Extensions for XML implementation in Opera before 11.01 recognizes links to javascript: URLs in the -o-link property, which makes it easier for remote attackers to bypass CSS filtering via a crafted URL.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDopera/opera_browser11.00+73

🔴Vulnerability Details

2
GHSA
GHSA-fw52-j4wp-cx8v: The Cascading Style Sheets (CSS) Extensions for XML implementation in Opera before 112022-05-17
CVEList
CVE-2011-0681: The Cascading Style Sheets (CSS) Extensions for XML implementation in Opera before 112011-01-31
CVE-2011-0681 — Opera Browser vulnerability | cvebase