Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
onionshare onionshare vulnerabilities and exploits
(subscribe to this query)
7
CVSSv3
CVE-2018-19960
The debug_mode function in web/web.py in OnionShare up to and including 1.3.1, when --debug is enabled, uses the /tmp/onionshare_server.log pathname for logging, which might allow local users to overwrite files or obtain sensitive information by using this pathname.
Onionshare Onionshare
5.3
CVSSv3
CVE-2021-41867
An information disclosure vulnerability in OnionShare 2.3 prior to 2.4 allows remote unauthenticated malicious users to retrieve the full list of participants of a non-public OnionShare node via the --chat feature.
Onionshare Onionshare
7.5
CVSSv3
CVE-2022-21689
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions the receive mode limits concurrent uploads to 100 per second and blocks other uploads in the same second, which c...
Onionshare Onionshare
9.8
CVSSv3
CVE-2021-41868
OnionShare 2.3 prior to 2.4 allows remote unauthenticated malicious users to upload files on a non-public node when using the --receive functionality.
Onionshare Onionshare
4.3
CVSSv3
CVE-2022-21691
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions chat participants can spoof their channel leave message, tricking others into assuming they left the chatroom.
Onionshare Onionshare
4.3
CVSSv3
CVE-2022-21692
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions anyone with access to the chat environment can write messages disguised as another chat participant.
Onionshare Onionshare
5.3
CVSSv3
CVE-2022-21694
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. The website mode of the onionshare allows to use a hardened CSP, which will block any scripts and external resources. It is not possib...
Onionshare Onionshare
4.3
CVSSv3
CVE-2022-21696
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at t...
Onionshare Onionshare
5.5
CVSSv3
CVE-2016-5026
hs.py in OnionShare prior to 0.9.1 allows local users to modify the hiddenservice by pre-creating the /tmp/onionshare directory.
Onionshare Onionshare
5.5
CVSSv3
CVE-2022-21688
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. Affected versions of the desktop application were found to be vulnerable to denial of service via an undisclosed vulnerability in the ...
Onionshare Onionshare
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920
buffer overflow
CVE-2024-36913
CVE-2024-5497
CVE-2024-23917
CVE-2024-4956
server-side request forgery
CVE-2024-35468
SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »