PT-2011-2556 · Opera · Opera

Published

2011-01-31

Updated

2017-09-19

CVE-2011-0681

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Opera versions prior to 11.01

Description The issue concerns the Cascading Style Sheets (CSS) Extensions for XML implementation, which recognizes links to javascript: URLs in the -o-link property. This makes it easier for remote attackers to bypass CSS filtering via a crafted URL.

Recommendations For versions prior to 11.01, update to version 11.01 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2011-0681

Affected Products

Opera

PT-2011-2556 · Opera · Opera

CVE-2011-0681

Related Identifiers

Affected Products

References · 9