VYPR

Onionshare

by Onionshare

Source repositories

CVEs (10)

  • CVE-2016-5026MedJan 30, 2017
    risk 0.36cvss 5.5epss 0.00

    hs.py in OnionShare before 0.9.1 allows local users to modify the hiddenservice by pre-creating the /tmp/onionshare directory.

  • CVE-2022-21693MedJan 18, 2022
    risk 0.34cvss 6.3epss 0.01

    OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions an adversary with a primitive that allows for filesystem access from the context of the Onionshare process can…

  • CVE-2022-21694Jan 18, 2022
    risk 0.00cvss epss 0.01

    OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. The website mode of the onionshare allows to use a hardened CSP, which will block any scripts and external resources. It is not…

  • CVE-2022-21690Jan 18, 2022
    risk 0.00cvss epss 0.01

    OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions The path parameter of the requested URL is not sanitized before being passed to the QT frontend. This path is…

  • CVE-2022-21692Jan 18, 2022
    risk 0.00cvss epss 0.01

    OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions anyone with access to the chat environment can write messages disguised as another chat participant.

  • CVE-2022-21689Jan 18, 2022
    risk 0.00cvss epss 0.01

    OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions the receive mode limits concurrent uploads to 100 per second and blocks other uploads in the same second, which…

  • CVE-2022-21691Jan 18, 2022
    risk 0.00cvss epss 0.01

    OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions chat participants can spoof their channel leave message, tricking others into assuming they left the chatroom.

  • CVE-2022-21695Jan 18, 2022
    risk 0.00cvss epss 0.01

    OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions authenticated users (or unauthenticated in public mode) can send messages without being visible in the list of…

  • CVE-2022-21688Jan 18, 2022
    risk 0.00cvss epss 0.01

    OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. Affected versions of the desktop application were found to be vulnerable to denial of service via an undisclosed vulnerability in the…

  • CVE-2022-21696Jan 18, 2022
    risk 0.00cvss epss 0.01

    OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at…