Skip to main content

Mini

2 CVEs product

Monthly

CVE-2019-18624 CRITICAL POC Act Now

Opera Mini for Android allows attackers to bypass intended restrictions on .apk file download/installation via an RTLO (aka Right to Left Override) approach, as demonstrated by misinterpretation of. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Google Mini
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2019-13607 MEDIUM POC This Month

The Opera Mini application through 16.0.14 for iOS has a UXSS vulnerability that can be triggered by performing navigation to a javascript: URL. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Apple Mini
NVD
CVSS 3.0
6.1
EPSS
0.8%
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Opera Mini for Android allows attackers to bypass intended restrictions on .apk file download/installation via an RTLO (aka Right to Left Override) approach, as demonstrated by misinterpretation of. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Google Mini
NVD
EPSS 1% CVSS 6.1
MEDIUM POC This Month

The Opera Mini application through 16.0.14 for iOS has a UXSS vulnerability that can be triggered by performing navigation to a javascript: URL. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Apple Mini
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy