Cross-Domain JSON Reading Vulnerability in Opera before 11.65

Cross-Domain JSON Reading Vulnerability in Opera before 11.65

CVE-2012-3557 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Opera before 11.65 does not properly restrict the reading of JSON strings, which allows remote attackers to perform cross-domain loading of JSON resources and consequently obtain sensitive information via a crafted web site.

Learn more about our Web App Pen Testing.