File Upload Vulnerability in Opera Web Browser
CVE-2002-2312

Currently unrated

Key Information:

Vendor: Opera Software
Status: Opera
Vendor: CVE Published:; 31 December 2002

🔔 Create Opera Software Vulnerability Alert

What is CVE-2002-2312?

Opera 6.0.1 has a vulnerability that allows remote attackers to upload arbitrary file contents by manipulating key events in a webpage. When users press keys corresponding to the JavaScript events event.ctrlKey or event.shiftKey within a webpage, it can trigger unintended behavior that may lead to insecure file uploads, exposing users to security risks. This issue emphasizes the importance of proper input validation and event handling in web applications.

References

http://online.securityfocus.com/archive/1/283866

mailing-listx_refsource_BUGTRAQ

http://online.securityfocus.com/archive/1/284096

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/5290

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2002