| Max CVSS | 9.3 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-4367 | 9.3 |
Opera before 9.23 allows remote attackers to execute arbitrary code via crafted Javascript that triggers a "virtual function call on an invalid pointer."
|
26-02-2022 - 03:59 | 15-08-2007 - 23:17 | |
| CVE-2007-3929 | 9.3 |
Use-after-free vulnerability in the BitTorrent support in Opera before 9.22 allows user-assisted remote attackers to execute arbitrary code via a crafted header in a torrent file, which leaves a dangling pointer to an invalid object.
|
26-02-2022 - 03:59 | 21-07-2007 - 00:30 | |
| CVE-2007-3819 | 5.0 |
Opera 9.21 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed.
|
15-10-2018 - 21:31 | 17-07-2007 - 01:30 | |
| CVE-2007-3142 | 5.8 |
Visual truncation vulnerability in Opera 9.21 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after 34 characters, as demonstrated by a phishing attack using HTTP Basic Au
|
29-07-2017 - 01:32 | 11-06-2007 - 18:30 | |
| CVE-2007-4944 | 5.0 |
The canvas.createPattern function in Opera 9.x before 9.22 for Linux, FreeBSD, and Solaris does not clear memory before using it to process a new pattern, which allows remote attackers to obtain sensitive information (memory contents) via JavaScript.
|
15-11-2008 - 05:00 | 18-09-2007 - 19:17 |