Opera Software Opera Web Browser — known CVE vulnerabilities
Every CVE whose affected-product data names Opera Software Opera Web Browser, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2005-0233 — CVSS 7.5 (high): The International Domain Name (IDN) support in Firefox 1.0, Camino .8.5, and Mozilla before 1.7.6 allows remote attackers to spoof domain…
CVE-2002-0243 — CVSS 7.5 (high): Cross-site scripting vulnerability in Opera 6.0 and earlier allows remote attackers to execute arbitrary script via an Extended HTML Form…
CVE-2002-0783 — CVSS 7.5 (high): Opera 6.01, 6.0, and 5.12 allows remote attackers to execute arbitrary JavaScript in the security context of other sites by setting the…
CVE-2002-1091 — CVSS 7.5 (high): Netscape 6.2.3 and earlier, and Mozilla 1.0.1, allow remote attackers to corrupt heap memory and execute arbitrary code via a GIF image…
CVE-2002-2311 — CVSS 6.4 (medium): Microsoft Internet Explorer 6.0 and possibly others allows remote attackers to upload arbitrary file contents when users press a key…
CVE-2001-1491 — CVSS 5.0 (medium): Opera 5.11 allows remote attackers to cause a denial of service (CPU consumption and memory leak) via a web page with a large number of…
CVE-2001-1245 — CVSS 5.0 (medium): Opera 5.0 for Linux does not properly handle malformed HTTP headers, which allows remote attackers to cause a denial of service, possibly…
CVE-2002-2332 — CVSS 5.0 (medium): Buffer overflow in Opera 6.01 allows remote attackers to cause a denial of service (crash) via an IMG tag with large width and height…
CVE-2002-0898 — CVSS 5.0 (medium): Opera 6.0.1 and 6.0.2 allows a remote web site to upload arbitrary files from the client system, without prompting the client, via an input…
CVE-1999-1283 — CVSS 5.0 (medium): Opera 3.2.1 allows remote attackers to cause a denial of service (application crash) via a URL that contains an extra / in the http:// tag.
CVE-2001-0898 — CVSS 5.0 (medium): Opera 6.0 and earlier allows remote attackers to access sensitive information such as cookies and links for other domains via Javascript…
CVE-2002-2358 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the FTP view feature in Opera 6.0 and 6.01 through 6.04 allows remote attackers to inject…
CVE-2002-0270 — CVSS 4.3 (medium): Opera, when configured with the "Determine action by MIME type" option disabled, interprets an object as an HTML document even when its…