CVE-2009-4071
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2009-4071
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Opera before 10.10, when exception stacktraces are enabled, places scripting error messages from a web site into variables that can be read by a different web site, which allows remote attackers to obtain sensitive information or conduct cross-site scripting (XSS) attacks via unspecified vectors.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Opera Web出错消息跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Opera Software Opera是挪威欧朋(Opera Software)公司的一款Web浏览器,它支持多窗口浏览、自定义用户界面等功能。 正常情况下仅应在导致错误的页面上出现脚本出错消息,但在某些情况下可以无关变量内容的形式向其他站点传送出错消息,其中可能包含有敏感信息。如果这些站点将内容写入到了页面标记中,就可以使用攻击站点所提供的代码执行跨站脚本攻击。这个漏洞仅影响启用了对异常的栈追踪的系统(默认为禁用)。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2009-4071
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2009-4071
Please Login to view more intelligence information
- http://www.opera.com/docs/changelogs/unix/1010/x_refsource_CONFIRM
- http://www.opera.com/docs/changelogs/mac/1010/x_refsource_CONFIRM
- http://www.opera.com/support/kb/view/941/x_refsource_CONFIRM
- http://www.opera.com/docs/changelogs/windows/1010/x_refsource_CONFIRM
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6385vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2009-4071
Same Patch Batch · n/a · 2009-11-24 · 25 CVEs total
| CVE-2009-4057 | Joomla!SQL注入漏洞 | |
| CVE-2009-4017 | PHP 'multipart/form-data'拒绝服务漏洞 | |
| CVE-2009-3843 | HP Operations Manager后门账号漏洞 | |
| CVE-2009-4066 | Drupal PHPList Integration多个跨站请求伪造漏洞 | |
| CVE-2009-4065 | Drupal Strongarm跨站脚本攻击漏洞 | |
| CVE-2009-4064 | Drupal Gallery Assist跨站脚本攻击漏洞 | |
| CVE-2009-4063 | Drupal Subgroups For Organic Groups跨站脚本攻击漏洞 | |
| CVE-2009-4062 | Drupal Printfriendly多个跨站脚本攻击漏洞 | |
| CVE-2009-4061 | Drupal Agreement多个跨站脚本攻击漏洞 | |
| CVE-2009-4060 | CubeCart 'viewProd.inc.php' SQL注入漏洞 | |
| CVE-2009-4059 | .Joomclan 'JoomClip' SQL注入漏洞 | |
| CVE-2009-4058 | Telebid Auction Script 'allauctions.php' SQL注入漏洞 | |
| CVE-2009-3303 | GForge 'www/help/tracker.php' 跨站脚本攻击漏洞 | |
| CVE-2009-4056 | Betsy CMS "admin/popup.php" 目录遍历漏洞 | |
| CVE-2009-4073 | Microsoft Internet Explorer 信息泄露漏洞 | |
| CVE-2009-4072 | Opera Web 未明安全漏洞 | |
| CVE-2009-4070 | GForge SQL注入漏洞 | |
| CVE-2009-4069 | GForge 多个跨站脚本攻击漏洞 | |
| CVE-2009-3898 | F5 Nginx 路径遍历漏洞 | |
| CVE-2009-3897 | Dovecot不安全base_dir权限漏洞 |
Showing top 20 of 25 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han - CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem
V. Comments for CVE-2009-4071
No comments yet