CVE-2004-2260

Opera Browser 7.23, and other versions before 7.50, updates the address bar as soon as the user clicks a link, which allows remote attackers to redirect to other sites via the onUnload attribute.
References
Link Resource
http://secunia.com/secunia_research/2004-2/advisory/ Broken Link Vendor Advisory
http://www.securityfocus.com/bid/10337 Broken Link Patch Third Party Advisory VDB Entry
http://www.osvdb.org/6108 Broken Link Patch
http://secunia.com/advisories/11532 Broken Link Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/16131 Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*

Information

Published : 2004-12-30 21:00

Updated : 2022-02-28 10:19


NVD link : CVE-2004-2260

Mitre link : CVE-2004-2260


JSON object : View

CWE
CWE-601

URL Redirection to Untrusted Site ('Open Redirect')

Advertisement

dedicated server usa

Products Affected

opera

  • opera_browser