← back
CVE-2012-4144

CVE-2012-4144

EPSS 1.2%
Opera before 12.01 on Windows and UNIX, and before 11.66 and 12.x before 12.01 on Mac OS X, does not properly escape characters in DOM elements, which makes it easier for remote attackers to bypass cross-site scripting (XSS) protection mechanisms via a crafted HTML document.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.opera.com/docs/changelogs/mac/1166/http://www.opera.com/docs/changelogs/mac/1201/http://www.opera.com/docs/changelogs/unix/1201/http://www.opera.com/docs/changelogs/windows/1201/http://www.opera.com/support/kb/view/1025/