VYPR

Opera Browser

by Opera

CVEs (280)

  • CVE-2011-2620Jul 1, 2011
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors involving SVG animation.

  • CVE-2011-2619Jul 1, 2011
    risk 0.00cvss epss 0.02

    Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a gradient with many stops, related to the implementation of CANVAS elements, SVG, and Cascading Style Sheets (CSS).

  • CVE-2011-2618Jul 1, 2011
    risk 0.00cvss epss 0.02

    Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via web script that moves a (1) AUDIO element or (2) VIDEO element between windows.

  • CVE-2011-2617Jul 1, 2011
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors related to selecting a text node, and closed pop-up windows, removed pop-up windows, and IFRAME elements.

  • CVE-2011-2616Jul 1, 2011
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (memory consumption) via unknown content on a web page, as demonstrated by test262.ecmascript.org.

  • CVE-2011-2615Jul 1, 2011
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application hang) via unknown content on a web page, as demonstrated by domiteca.com.

  • CVE-2011-2614Jul 1, 2011
    risk 0.00cvss epss 0.02

    The SVG implementation in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors involving a path on which many characters are drawn.

  • CVE-2011-2613Jul 1, 2011
    risk 0.00cvss epss 0.02

    The Array.prototype.join method in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a non-array object that contains initial holes.

  • CVE-2011-2612Jul 1, 2011
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by progorod.ru.

  • CVE-2011-2611Jul 1, 2011
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in the printing functionality in Opera before 11.50 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted web page.

  • CVE-2011-2610Jul 1, 2011
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in Opera before 11.50 has unknown impact and attack vectors, related to a "moderately severe issue."

  • CVE-2011-2609Jul 1, 2011
    risk 0.00cvss epss 0.02

    Opera before 11.50 does not properly restrict data: URIs, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web site.

  • CVE-2011-1337Jul 1, 2011
    risk 0.00cvss epss 0.03

    Opera before 11.50 allows remote attackers to cause a denial of service (disk consumption) via invalid URLs that trigger creation of error pages.

  • CVE-2011-1824May 10, 2011
    risk 0.00cvss epss 0.06

    The VEGAOpBitmap::AddLine function in Opera before 10.61 does not properly initialize memory during processing of the SIZE attribute of a SELECT element, which allows remote attackers to trigger an invalid memory write operation, and consequently cause a denial of service…

  • CVE-2011-0687Jan 31, 2011
    risk 0.00cvss epss 0.02

    Opera before 11.01 does not properly implement Wireless Application Protocol (WAP) dropdown lists, which allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted WAP document.

  • CVE-2011-0686Jan 31, 2011
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Opera before 11.01 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by vkontakte.ru.

  • CVE-2011-0685Jan 31, 2011
    risk 0.00cvss epss 0.00

    The Delete Private Data feature in Opera before 11.01 does not properly implement the "Clear all email account passwords" option, which might allow physically proximate attackers to access an e-mail account via an unattended workstation.

  • CVE-2011-0684Jan 31, 2011
    risk 0.00cvss epss 0.02

    Opera before 11.01 does not properly handle redirections and unspecified other HTTP responses, which allows remote web servers to obtain sufficient access to local files to use these files as page resources, and consequently obtain potentially sensitive information from the…

  • CVE-2011-0683Jan 31, 2011
    risk 0.00cvss epss 0.02

    Opera before 11.01 does not properly restrict the use of opera: URLs, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.

  • CVE-2011-0682Jan 31, 2011
    risk 0.00cvss epss 0.06

    Integer truncation error in opera.dll in Opera before 11.01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an HTML form with a select element that contains a large number of children.

Page 7 of 14