Opera Web Browser 'javascript:' URI in 'Refresh' Header Cross-Site Scripting Vulnerability

Bugtraq ID: 35571
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Jul 03 2009 12:00AM
Updated: Jul 06 2009 05:06PM
Credit: MustLive
Vulnerable: Opera Software Opera Web Browser 9.52
Opera Software Opera Web Browser 9.51
Opera Software Opera Web Browser 9.50 beta
Opera Software Opera Web Browser 9.5
Opera Software Opera Web Browser 9.27
Opera Software Opera Web Browser 9.26
Opera Software Opera Web Browser 9.25
Opera Software Opera Web Browser 9.24
Opera Software Opera Web Browser 9.23
Opera Software Opera Web Browser 9.22
Opera Software Opera Web Browser 9.21
Opera Software Opera Web Browser 9.20 beta 1
Opera Software Opera Web Browser 9.20
Opera Software Opera Web Browser 9.10
Opera Software Opera Web Browser 9.02
Opera Software Opera Web Browser 9.01
Opera Software Opera Web Browser 9
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus