CVE-2010-2455

Opera Browser - Address Bar Spoofing via Crafted HTML Document

Title source: llm

Description

Opera does not properly manage the address bar between the request to open a URL and the retrieval of the new document's content, which might allow remote attackers to conduct spoofing attacks via a crafted HTML document, a related issue to CVE-2010-1206.

References (2)

Core 2

Core References

Exploit x_refsource_misc

https://bugzilla.mozilla.org/show_bug.cgi?id=556957

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/59831

Scores

EPSS 0.0024

EPSS Percentile 47.5%

Details

CWE

CWE-264

Status published

Products (30)

opera/opera_browser 5.0 (8 CPE variants)

opera/opera_browser 5.02

opera/opera_browser 5.10

opera/opera_browser 5.11

opera/opera_browser 5.12

opera/opera_browser 6.0 (6 CPE variants)

opera/opera_browser 6.1 (2 CPE variants)

opera/opera_browser 6.01

opera/opera_browser 6.02

opera/opera_browser 6.03

... and 20 more

Published Jun 25, 2010

Tracked Since Feb 18, 2026