CVE-2008-4795

Name: CVE-2008-4795
Creator: NVD / NIST
Published: 2008-10-30T20:56:54.74+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 4.34%

Last modified Jun 16, 2026

CVE-2008-4795 is a vulnerability of currently unknown severity. The links panel in Opera before 9.62 processes Javascript within the context of the "outermost page" of a frame, which allows remote attackers to inject arbitrary web script or HTML via cross-site scripting (XSS) attacks.. EPSS estimates a 4.34% chance of exploitation in the next 30 days.

Description

The links panel in Opera before 9.62 processes Javascript within the context of the "outermost page" of a frame, which allows remote attackers to inject arbitrary web script or HTML via cross-site scripting (XSS) attacks.

Metrics

EPSS Probability

4.34%

90.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-79

Affected Software

Vendor	Product	Versions	Update
Opera	Opera	<= 9.61	—
Opera	Opera	5..10	—
Opera	Opera	5.0	—
Opera	Opera	5.1	—
Opera	Opera	5.2	—
Opera	Opera	5.3	—
Opera	Opera	5.4	—
Opera	Opera	5.5	—
Opera	Opera	5.6	—
Opera	Opera	5.7	—
Opera	Opera	5.8	—
Opera	Opera	5.9	—
Opera	Opera	5.11	—
Opera	Opera	5.12	—
Opera	Opera	6	Beta 1
Opera	Opera	6.0	—
Opera	Opera	6.01	—
Opera	Opera	6.02	—
Opera	Opera	6.03	—
Opera	Opera	6.04	—
Opera	Opera	6.05	—
Opera	Opera	6.06	—
Opera	Opera	7	Beta 1
Opera	Opera	7.0	—
Opera	Opera	7.01	—
Opera	Opera	7.02	—
Opera	Opera	7.03	—
Opera	Opera	7.10	—
Opera	Opera	7.11	—
Opera	Opera	7.20	—
Opera	Opera	7.21	—
Opera	Opera	7.22	—
Opera	Opera	7.23	—
Opera	Opera	7.50	—
Opera	Opera	7.51	—
Opera	Opera	7.52	—
Opera	Opera	7.53	—
Opera	Opera	7.54	—
Opera	Opera	8.0	—
Opera	Opera	8.01	—
Opera	Opera	8.02	—
Opera	Opera	8.50	—
Opera	Opera	8.51	—
Opera	Opera	8.52	—
Opera	Opera	8.53	—
Opera	Opera	8.54	—
Opera	Opera	9.0	—
Opera	Opera	9.01	—
Opera	Opera	9.02	—
Opera	Opera	9.10	—

Showing 50 of 60 affected configurations. See NVD for the full list.

References

Timeline

Published: Oct 30, 2008
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2008-4795?

How severe is CVE-2008-4795?

Severity scoring for CVE-2008-4795 is pending analysis. The EPSS model estimates a 4.34% probability of exploitation in the next 30 days.

How do I fix CVE-2008-4795?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2008-4795?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST