XSS Vulnerability in Opera Browser by Opera Software
CVE-2013-4705

Currently unrated

Key Information:

Vendor: Opera
Status: Opera Browser
Vendor: CVE Published:; 13 September 2013

Summary

A cross-site scripting (XSS) vulnerability exists in the Opera browser prior to version 15.00, which allows remote attackers to inject arbitrary web scripts or HTML. By exploiting this flaw, attackers can leverage UTF-8 encoding to execute malicious scripts in the context of the user’s session, potentially leading to data theft or further compromise of the user's system.

References

http://jvn.jp/en/jp/JVN01094166/index.html

third-party-advisoryx_refsource_JVN

http://www.opera.com/docs/changelogs/unified/1500/

x_refsource_MISC

http://jvndb.jvn.jp/jvndb/JVNDB-2013-000086

third-party-advisoryx_refsource_JVNDB

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 13, 2013