cbcvebase.
CVE-2013-1639
published 2013-02-08

CVE-2013-1639: Opera before 12.13 does not send CORS preflight requests in all required cases, which allows remote attackers to bypass a CSRF protection mechanism via a…

PriorityP427medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
0.49%
38.5th percentile
Opera before 12.13 does not send CORS preflight requests in all required cases, which allows remote attackers to bypass a CSRF protection mechanism via a crafted web site that triggers a CORS request.

Affected

6 ranges
VendorProductVersion rangeFixed in
operaopera_browser<= 12.12
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.