Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Opera, when configured with the "Determine action by MIME type" option disabled, interprets an object as an HTML document even when its MIME Content-Type is text/plain, which could allow remote attackers to execute arbitrary script in documents that the user does not expect, possibly through web applications that use a text/plain type to prevent cross-site scripting attacks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Opera Content-Type HTML文件执行漏洞
Vulnerability Description
Opera是一个商业化的浏览器产品,可运行于Windows及基于Linux的系统之下。 Opera 在处理页面中包含的Content-Type指令时存在漏洞,可能使远程恶意网站在浏览它的客户机上执行脚本。 当一个网页中包含有与其Content-Type 不符的标记时,Opera可能不会按照Content-Type中指定的类型进行处理。比如当一个Content-Type指定为text/plain的页面中包含有HTML标记时,Opera会把它作为HTML页面处理,这可能会导致在页面中的脚本程序被执行。
CVSS Information
N/A
Vulnerability Type
N/A