Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict access to the full pathname of a file selected for upload, which allows remote attackers to obtain potentially sensitive information via unspecified DOM manipulations.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2010-07-07T18:00:00

Updated: 2024-08-07T02:39:37.846Z

Reserved: 2010-07-07T00:00:00

Link: CVE-2010-2661

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-07-08T12:54:47.367

Modified: 2024-11-21T01:17:07.223

Link: CVE-2010-2661

cve-icon Redhat

No data.