CVE-2018-12587

A cross-site scripting (XSS) vulnerability was found in valeuraddons German Spelling Dictionary v1.3 (an Opera Browser add-on). Instead of providing text for a spelling check, remote attackers may inject arbitrary web script or HTML via the ajax query parameter in the URL Address Bar.
Configurations

Configuration 1

cpe:2.3:a:german_spelling_dictionary_project:german_spelling_dictionary:1.3:*:*:*:*:opera:*:*

Information

Published : 2018-08-13 05:29

Updated : 2018-10-11 02:55


NVD link : CVE-2018-12587

Mitre link : CVE-2018-12587

Products Affected
No products.
CWE