High severityOSV Advisory· Published Aug 6, 2025· Updated Apr 15, 2026
CVE-2025-54872
CVE-2025-54872
Description
onion-site-template is a complete, scalable tor hidden service self-hosting sample. Versions which include commit 3196bd89 contain a baked-in tor image if the secrets were copied from an existing onion domain. A website could be compromised if a user shared the baked-in image, or if someone were able to acquire access to the user's device outside of a containerized environment. This is fixed by commit bc9ba0fd.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: >= 3196bd89
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.