Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Opera before 10.10, when exception stacktraces are enabled, places scripting error messages from a web site into variables that can be read by a different web site, which allows remote attackers to obtain sensitive information or conduct cross-site scripting (XSS) attacks via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Opera Web出错消息跨站脚本漏洞
Vulnerability Description
Opera Software Opera是挪威欧朋(Opera Software)公司的一款Web浏览器,它支持多窗口浏览、自定义用户界面等功能。 正常情况下仅应在导致错误的页面上出现脚本出错消息,但在某些情况下可以无关变量内容的形式向其他站点传送出错消息,其中可能包含有敏感信息。如果这些站点将内容写入到了页面标记中,就可以使用攻击站点所提供的代码执行跨站脚本攻击。这个漏洞仅影响启用了对异常的栈追踪的系统(默认为禁用)。
CVSS Information
N/A
Vulnerability Type
N/A