CVSS: 6.1EPSS: 0%CPEs: 8EXPL: 3CVE-2002-2358 – Opera 6.0.x - FTP View Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2002-2358
31 Dec 2002 — Cross-site scripting (XSS) vulnerability in the FTP view feature in Opera 6.0 and 6.01 through 6.04 allows remote attackers to inject arbitrary web script or HTML via the title tag of an FTP URL. • https://www.exploit-db.com/exploits/21681 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 6%CPEs: 13EXPL: 1CVE-2002-1091
https://notcve.org/view.php?id=CVE-2002-1091
04 Oct 2002 — Netscape 6.2.3 and earlier, and Mozilla 1.0.1, allow remote attackers to corrupt heap memory and execute arbitrary code via a GIF image with a zero width. • http://bugzilla.mozilla.org/show_bug.cgi?id=157989 •
CVSS: 7.5EPSS: 3%CPEs: 6EXPL: 3CVE-2002-0783 – Opera 5.12/6.0 - Frame Location Same Origin Policy Circumvention
https://notcve.org/view.php?id=CVE-2002-0783
26 Jul 2002 — Opera 6.01, 6.0, and 5.12 allows remote attackers to execute arbitrary JavaScript in the security context of other sites by setting the location of a frame or iframe to a Javascript: URL. • https://www.exploit-db.com/exploits/21451 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2002-0243
https://notcve.org/view.php?id=CVE-2002-0243
03 May 2002 — Cross-site scripting vulnerability in Opera 6.0 and earlier allows remote attackers to execute arbitrary script via an Extended HTML Form, whose output from the remote server is not properly cleansed. Vulnerabilidad de secuencias de comandos en sitios cruzados en Internet Opera 6 y anteriores permite que atacante remotos ejecuten código arbitrario por medio de un formulario HTML extendido, cuya salida del servidor remoto no se ha aclarado adecuadamente. • http://marc.info/?l=bugtraq&m=101309907709138&w=2 •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 2CVE-2001-1491 – Microsoft Internet Explorer 6.0 / Mozilla 0.9.6 / Opera 5.1 - Image Count Denial of Service
https://notcve.org/view.php?id=CVE-2001-1491
31 Dec 2001 — Opera 5.11 allows remote attackers to cause a denial of service (CPU consumption and memory leak) via a web page with a large number of images. • https://www.exploit-db.com/exploits/21181 •
CVSS: 8.6EPSS: 2%CPEs: 1EXPL: 1CVE-2001-0898 – Opera 5.0/5.1 - Same Origin Policy Circumvention
https://notcve.org/view.php?id=CVE-2001-0898
15 Nov 2001 — Opera 6.0 and earlier allows remote attackers to access sensitive information such as cookies and links for other domains via Javascript that uses setTimeout to (1) access data after a new window to the domain has been opened or (2) access data via about:cache. • https://www.exploit-db.com/exploits/21156 •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2001-1245
https://notcve.org/view.php?id=CVE-2001-1245
09 Jul 2001 — Opera 5.0 for Linux does not properly handle malformed HTTP headers, which allows remote attackers to cause a denial of service, possibly with a header whose value is the same as a MIME header name. • http://online.securityfocus.com/archive/1/196980 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1283
https://notcve.org/view.php?id=CVE-1999-1283
14 Aug 1998 — Opera 3.2.1 allows remote attackers to cause a denial of service (application crash) via a URL that contains an extra / in the http:// tag. • http://www.securityfocus.com/archive/1/10320 •