Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
onionshare onionshare vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-41868
OnionShare 2.3 prior to 2.4 allows remote unauthenticated malicious users to upload files on a non-public node when using the --receive functionality.
Onionshare Onionshare
5
CVSSv2
CVE-2022-21694
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. The website mode of the onionshare allows to use a hardened CSP, which will block any scripts and external resources. It is not possib...
Onionshare Onionshare
5
CVSSv2
CVE-2022-21695
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions authenticated users (or unauthenticated in public mode) can send messages without being visible in the list of ch...
Onionshare Onionshare
5
CVSSv2
CVE-2022-21689
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions the receive mode limits concurrent uploads to 100 per second and blocks other uploads in the same second, which c...
Onionshare Onionshare
5
CVSSv2
CVE-2021-41867
An information disclosure vulnerability in OnionShare 2.3 prior to 2.4 allows remote unauthenticated malicious users to retrieve the full list of participants of a non-public OnionShare node via the --chat feature.
Onionshare Onionshare
4.4
CVSSv2
CVE-2018-19960
The debug_mode function in web/web.py in OnionShare up to and including 1.3.1, when --debug is enabled, uses the /tmp/onionshare_server.log pathname for logging, which might allow local users to overwrite files or obtain sensitive information by using this pathname.
Onionshare Onionshare
4.3
CVSSv2
CVE-2022-21688
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. Affected versions of the desktop application were found to be vulnerable to denial of service via an undisclosed vulnerability in the ...
Onionshare Onionshare
4
CVSSv2
CVE-2022-21692
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions anyone with access to the chat environment can write messages disguised as another chat participant.
Onionshare Onionshare
4
CVSSv2
CVE-2022-21691
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions chat participants can spoof their channel leave message, tricking others into assuming they left the chatroom.
Onionshare Onionshare
4
CVSSv2
CVE-2022-21693
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions an adversary with a primitive that allows for filesystem access from the context of the Onionshare process can ac...
Onionshare Onionshare
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »