Vulnerability CVE-2008-4696

Vulnerability CVE-2008-4696

Published: 2008-10-23 Modified: 2012-02-12

Description:

	Topic	Author	Date
Low	Opera Stored Cross Site Scripting Vulnerability	Roberto Suggi	23.10.2008

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Opera -> Opera

http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00009.html

http://security.gentoo.org/glsa/glsa-200811-01.xml

http://securityreason.com/securityalert/4504

http://www.openwall.com/lists/oss-security/2008/10/21/6

http://www.openwall.com/lists/oss-security/2008/10/22/5

http://www.opera.com/docs/changelogs/freebsd/961/

http://www.opera.com/docs/changelogs/linux/961/

http://www.opera.com/docs/changelogs/mac/961/

http://www.opera.com/docs/changelogs/solaris/961/

http://www.opera.com/docs/changelogs/windows/961/

http://www.opera.com/support/search/view/903/

http://www.security-assessment.com/files/advisories/2008-10-22_Opera_Stored_Cross_Site_Scripting.pdf

http://www.securityfocus.com/archive/1/497646/100/0/threaded

http://www.securityfocus.com/bid/31869

http://www.vupen.com/english/advisories/2008/2873

https://exchange.xforce.ibmcloud.com/vulnerabilities/46003

https://www.exploit-db.com/exploits/6801