CVE-2007-1737

Opera 9.10 - Phishing Protection Bypass via Object or Iframe URL

Title source: llm
STIX 2.1

Description

Opera 9.10 does not check URLs embedded in (1) object or (2) iframe HTML tags against the phishing site blacklist, which allows remote attackers to bypass phishing protection.

References (3)

Core 3
Core References
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/2488
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/464041/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/33488

Scores

EPSS 0.0014
EPSS Percentile 33.2%

Details

Status published
Products (1)
opera/opera_browser 9.10
Published Mar 28, 2007
Tracked Since Feb 18, 2026