XSS in Opera_software Opera_web_browser
CVE-2002-2358
Cross-site scripting (XSS) vulnerability in the FTP view feature in Opera 6.0 and 6.01 through 6.04 allows remote attackers to inject arbitrary web script or HTML via the title tag of an FTP URL.
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.017 (74.5th percentile) — read the EPSS interpretation.
Affected products
- Opera_software Opera_web_browser — versions 6.0, 6.0.1, 6.0.2
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (Exploit, Patch, vdb-entry, x_refsource_BID)
- cve@mitre.org (mailing-list, x_refsource_VULNWATCH, Exploit)
- cve@mitre.org (x_refsource_MISC)
- cve@mitre.org (vdb-entry, x_refsource_XF)