Security Advisory

CVE-2009-3048

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-09-02 17:00:00

Last updated 2024-08-07 06:14:55

Assigner mitre

State PUBLISHED

Description

Opera before 10.00 on Linux, Solaris, and FreeBSD does not properly implement the "INPUT TYPE=file" functionality, which allows remote attackers to trick a user into uploading an unintended file via vectors involving a "dropped file."

← Browse all CVEs View on cve.org ↗