Opera 7.0 - History Object Information Disclosure
| EKU-ID: 27707 | CVE: | OSVDB-ID: |
| Author: GreyMagic Software | Published: 2003-02-04 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 27707 | CVE: | OSVDB-ID: |
| Author: GreyMagic Software | Published: 2003-02-04 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/6757/info
An information disclosure weakness has been reported for Opera 7 browsers on the Microsoft Windows platform.
The weakness is due to the way the history object exposes some properties. Specifically, the properties history.next and history.previous are exposed. Any site can make use of these properties to track a user's web surfing habits.
alert("Last URL: "+history.previous+".\nNext URL: "+history.next+".");