漏洞描述
Opera是挪威欧朋(Opera Software)公司所开发的一款Web浏览器,它支持多窗口浏览、可定制用户界面等。 Opera 11.50之前版本的Array.prototype.join方法中存在资源管理错误漏洞。远程攻击者可借助包含初始holes的非数组对象导致拒绝服务(应用程序崩溃)。
Opera Array.prototype.join方法资源管理错误漏洞
PoC代码
暂无相关漏洞推荐
- POC kafka-api-cluster: Kafka Operation API - Cluster
- (CVE-2025-36604)Dell Unity OS命令注入漏洞
- CVE-2023-20888: VMware Aria Operations for Networks - Remote Code Execution
- 泛微 E-Mobile /installOperate.do 服务器端请求伪造漏洞
- POC CVE-2020-11853: Micro Focus Operations Bridge Manager <=2020.05 - Remote Code Execution
- POC CVE-2021-21975: vRealize Operations Manager API - Server-Side Request Forgery
- POC CVE-2021-22502: Micro Focus Operations Bridge Reporter - Remote Code Execution
- POC CVE-2021-41266: MinIO Operator Console Authentication Bypass
- POC CVE-2023-20864: VMware Aria Operations for Logs - Unauthenticated Remote Code Execution
- POC CVE-2023-20888: VMware Aria Operations for Networks - Remote Code Execution
- POC CVE-2023-20889: VMware Aria Operations for Networks - Code Injection Information Disclosure Vulnerability
- POC CVE-2023-22480: KubeOperator Foreground `kubeconfig` - File Download
- POC CVE-2024-22319: IBM Operational Decision Manager - JNDI Injection