Lucene search
K

5 matches found

ATTACKERKB
ATTACKERKB
added 2022/05/07 5:15 a.m.3 views

CVE-2022-30334

Brave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in Referer and Origin headers. NOTE: although this was fixed by Brave, the Brave documentation still advises "Note that Private Windows with Tor Connectivity in Brave are just regular private windows that us...

5.3CVSS6AI score0.02226EPSS
Exploits1References5
Prion
Prion
added 2022/05/07 5:15 a.m.19 views

Design/Logic Flaw

Brave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in Referer and Origin headers. NOTE: although this was fixed by Brave, the Brave documentation still advises "Note that Private Windows with Tor Connectivity in Brave are just regular private windows that us...

5CVSS5.3AI score0.02226EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2022/05/07 4:29 a.m.28 views

CVE-2022-30334

Brave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in Referer and Origin headers. NOTE: although this was fixed by Brave, the Brave documentation still advises "Note that Private Windows with Tor Connectivity in Brave are just regular private windows that us...

5.6AI score0.02226EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/05/07 12:0 a.m.5 views

Brave 信息泄露漏洞

Brave is a fast, private and secure web browser from Brave USA. A security vulnerability exists in Brave versions prior to 1.34 that stems from leaks.onion URLs appearing in the headers of Referer and Origin when using a private window with a Tor connection...

5.3CVSS5.8AI score0.02226EPSS
Exploits1References5
Hacker One
Hacker One
added 2016/11/09 11:10 p.m.18 views

Paragon Initiative Enterprises: Incorrect detection of onion URLs

Several places have incorrect code to detect if URL point to .onion domain tor hidden server: The following regexes: 1. ^https://^/:+.onion:?:0-9+ 2. ^https?://^/+.onion which is used in: https://github.com/paragonie/airship/blob/0e9289553cdc538556d362faaee63be6cc534a0c/src/Engine/Hail.phpL223...

Exploits0
Rows per page
Query Builder