Approved changes feed: RSS · Atom

cpe:2.3:a:opera:opera:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorOpera (59f0a105-cac9-5c1f-b0fb-85549d53b66c)
ProductOpera (04934513-2c84-5dd7-999a-3f3bfba8c6c5)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2010-5227 vulnerable 2026-06-08 04:56:32.527633 Details available
Untrusted search path vulnerability in Opera before 10.62 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .htm, .mht, .mhtml, .xht, .xhtm, or .xhtl file. NOTE: some of these details are obtained from third party information.
Published: 2012-09-07T10:00:00.000Z
Updated: 2024-09-17T02:27:53.764Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2008-5679 vulnerable 2026-06-08 04:50:52.302071 Details available
The HTML parsing engine in Opera before 9.63 allows remote attackers to execute arbitrary code via crafted web pages that trigger an invalid pointer calculation and heap corruption.
Published: 2008-12-19T16:09:00.000Z
Updated: 2024-08-07T11:04:44.051Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2008-4795 vulnerable 2026-06-08 04:50:48.191894 Details available
The links panel in Opera before 9.62 processes Javascript within the context of the "outermost page" of a frame, which allows remote attackers to inject arbitrary web script or HTML via cross-site scripting (XSS) attacks.
Published: 2008-10-30T20:49:00.000Z
Updated: 2024-08-07T10:31:27.863Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2008-4794 vulnerable 2026-06-08 04:50:48.189830 Details available
Opera before 9.62 allows remote attackers to execute arbitrary commands via the History Search results page, a different vulnerability than CVE-2008-4696.
Published: 2008-10-30T20:49:00.000Z
Updated: 2024-08-07T10:31:27.365Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2008-4696 vulnerable 2026-06-08 04:50:47.899234 Details available
Cross-site scripting (XSS) vulnerability in Opera.dll in Opera before 9.61 allows remote attackers to inject arbitrary web script or HTML via the anchor identifier (aka the "optional fragment"), which is not properly escaped before storage in the History Search database (aka md.dat).
Published: 2008-10-23T21:00:00.000Z
Updated: 2024-08-07T10:24:20.696Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2008-4293 vulnerable 2026-06-08 04:50:38.448562 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2008-3172 vulnerable 2026-06-08 04:50:33.311829 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2008-3079 vulnerable 2026-06-08 04:50:32.988461 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2008-1764 vulnerable 2026-06-08 04:50:21.758597 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2008-1761 vulnerable 2026-06-08 04:50:21.739578 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2003-1561 vulnerable 2026-06-08 04:47:47.898839 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.