CORS Implementation Flaw in Opera Browser
CVE-2012-6462

Currently unrated

Key Information:

Vendor: Opera
Status: Opera Browser
Vendor: CVE Published:; 2 January 2013

Summary

This vulnerability arises from an improper implementation of the Cross-Origin Resource Sharing (CORS) specification in Opera Browser versions prior to 12.10. It allows remote attackers to exploit this flaw by crafting malicious requests, enabling them to bypass essential page-content restrictions. As a result, unauthorized access to sensitive content may occur, creating substantial security risks for users.

References

http://www.opera.com/docs/changelogs/unified/1210/

x_refsource_CONFIRM

http://www.opera.com/support/kb/view/1030/

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 2, 2013