• info
• discussion
• exploit
• solution
• references

Opera Web Browser XMLHttpRequest Object Cross-Domain Access Vulnerability

Opera Web Browser is prone to an issue that allows a violation of the cross-domain security model.

This issue arises due to an access-validation error affecting the 'XMLHttpRequest' object.

Successful exploitation may allow an attacker to steal cookies, manipulate content, obtain sensitive information, or launch other attacks.

Opera Web Browser version 8.0 is prone to this issue.