Opera 8.01 allows remote attackers to conduct cross-site scripting (XSS) attacks or modify which files are uploaded by tricking a user into dragging an image that is a "javascript:" URI.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2005-07-28T04:00:00
Updated: 2024-08-07T22:22:49.125Z
Reserved: 2005-07-28T00:00:00
Link: CVE-2005-2406

No data.

Status : Modified
Published: 2005-08-01T04:00:00.000
Modified: 2024-11-20T23:59:29.197
Link: CVE-2005-2406

No data.