Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Javascript SVG support in Opera before 9.10 does not properly validate object types in a createSVGTransformFromMatrix request, which allows remote attackers to execute arbitrary code via JavaScript code that uses an invalid object in this request that causes a controlled pointer to be referenced during the virtual function call.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Opera Software Opera createSVGTransformFromMatrix 代码注入漏洞
Vulnerability Description
Opera 9.10之前版本中的Javascript SVG支持没有正确的验证createSVGTransformFromMatrix请求中的对象种类,这使得远程攻击者可以借助JavaScript代码,来执行任意代码。该JavaScript代码会在一个请求中使用一个无效的对象。该请求会造成受控制的指针在虚拟函数呼叫中被引用。
CVSS Information
N/A
Vulnerability Type
N/A