CVE-2009-3048

Metadata

CVE-2009-3048
4.3
opera.com, opera.com, opera.com, opera.com
2009-09-02
2017-09-21 21:08

Description

Opera before 10.00 on Linux, Solaris, and FreeBSD does not properly implement the "INPUT TYPE=file" functionality, which allows remote attackers to trick a user into uploading an unintended file via vectors involving a "dropped file."

Related Vulnerabilities