CVE-2004-2260 Information

Description

Opera Browser 7.23 and other versions before 7.50 updates the address bar as soon as the user clicks a link which allows remote attackers to redirect to other sites via the onUnload attribute.

Reference

http://secunia.com/advisories/11532 http://secunia.com/secunia_research/2004-2/advisory/ http://www.osvdb.org/6108 http://www.securityfocus.com/bid/10337 https://exchange.xforce.ibmcloud.com/vulnerabilities/16131 opera-onunload-url-spoofing(16131)