Cross-Site Scripting Vulnerability in Opera Web Browser
CVE-2012-6464

Currently unrated

Key Information:

Vendor: Opera
Status: Opera Browser
Vendor: CVE Published:; 2 January 2013

What is CVE-2012-6464?

A cross-site scripting vulnerability in Opera Web Browser prior to version 12.10 permits remote attackers to inject arbitrary web scripts or HTML into user sessions. This is achieved by exploiting crafted JavaScript code that can override methods of unspecified native objects in documents from different origins, potentially leading to unauthorized actions on behalf of the user.

References

http://www.opera.com/support/kb/view/1032/

x_refsource_CONFIRM

http://www.opera.com/docs/changelogs/unified/1210/

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 2, 2013