Lucene search
K

40 matches found

Prion
Prion
added 2022/01/18 8:15 p.m.13 views

Design/Logic Flaw

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at the end of the nam...

4CVSS4.5AI score0.00708EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/01/18 7:55 p.m.25 views

CVE-2022-21696 Username spoofing in OnionShare

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at the end of the nam...

4.3CVSS4.9AI score0.00708EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/01/18 12:0 a.m.6 views

OnionShare 授权问题漏洞

OnionShare is an open source tool for securely and anonymously sharing files, hosting websites, and chatting with friends using the Tor network. Used to securely and anonymously share files, host websites, and chat with friends using the Tor network, OnionShare has a security vulnerability that...

5.3CVSS5.6AI score0.00849EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/10/04 12:0 a.m.5 views

OnionShare 安全漏洞

OnionShare is an open source tool for securely and anonymously sharing files, hosting websites, and chatting with friends using the Tor network. Used to securely and anonymously share files, host websites, and chat with friends using the Tor network, OnionShare has a file upload vulnerability tha...

9.8CVSS5.6AI score0.0232EPSS
Exploits1References3
NVD
NVD
added 2020/06/24 8:15 p.m.15 views

CVE-2020-13247

BooleBox Secure File Sharing Utility before 4.2.3.0 allows CSV injection via a crafted user name that is mishandled during export from the activity logs in the Audit Area...

8.5CVSS0.00965EPSS
Exploits1References2
OSV
OSV
added 2020/06/24 8:15 p.m.5 views

CVE-2020-13247

BooleBox Secure File Sharing Utility before 4.2.3.0 allows CSV injection via a crafted user name that is mishandled during export from the activity logs in the Audit Area...

7.3CVSS6.5AI score0.00965EPSS
Exploits1References2
Prion
Prion
added 2020/06/24 8:15 p.m.10 views

Design/Logic Flaw

BooleBox Secure File Sharing Utility before 4.2.3.0 allows CSV injection via a crafted user name that is mishandled during export from the activity logs in the Audit Area...

8.5CVSS7.1AI score0.00965EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/06/24 7:33 p.m.19 views

CVE-2020-13247

BooleBox Secure File Sharing Utility before 4.2.3.0 allows CSV injection via a crafted user name that is mishandled during export from the activity logs in the Audit Area...

7.2AI score0.00965EPSS
Exploits1References2
CVE
CVE
added 2020/06/24 7:33 p.m.45 views

CVE-2020-13247

BooleBox Secure File Sharing Utility (before 4.2.3.0) is affected by two CVEs in the dataset: CVE-2020-13247 enables CSV injection via a crafted username exported from activity logs in Audit Area; CVE-2020-13248 enables stored XSS via a crafted avatar field in My Account JSON data to Account.aspx...

8.5CVSS7.1AI score0.00965EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2020/06/24 7:15 p.m.15 views

CVE-2020-13248

BooleBox Secure File Sharing Utility before 4.2.3.0 allows stored XSS via a crafted avatar field within My Account JSON data to Account.aspx...

5.4CVSS0.00965EPSS
Exploits2References2
Prion
Prion
added 2020/06/24 7:15 p.m.13 views

Cross site scripting

BooleBox Secure File Sharing Utility before 4.2.3.0 allows stored XSS via a crafted avatar field within My Account JSON data to Account.aspx...

3.5CVSS5AI score0.00965EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2020/06/24 6:36 p.m.48 views

CVE-2020-13248

BooleBox Secure File Sharing Utility pre-4.2.3.0 suffers a stored XSS vulnerability (CVE-2020-13248) in the My Account avatar data sent to Account.aspx. A crafted avatar field can execute scripts in the affected session. Root cause: insufficient validation of the avatar JSON parameter. The CVE en...

5.4CVSS5AI score0.00965EPSS
Exploits2References2Affected Software1
Malwarebytes
Malwarebytes
added 2019/03/14 5:37 p.m.77 views

Mozilla launches Firefox Send for private file sharing

Mozilla look to reclaim some ground from the all-powerful Chrome with a new way to send and receive files securely from inside the browser. Firefox Send first emerged in 2017, promising an easy way to send documents without fuss. The training wheels have now come off and Send is ready to go...

7.4AI score
Exploits0
n0where
n0where
added 2019/02/20 4:28 p.m.113 views

Securely and Anonymously Send and Receive Files: OnionShare

OnionShare is an open source tool for securely and anonymously sending and receiving files using Tor onion services. It works by starting a web server directly on your computer and making it accessible as an unguessable Tor web address that others can load in Tor Browser to download files from yo...

7.2AI score
Exploits0References2
myhack58
myhack58
added 2015/09/23 12:0 a.m.27 views

Microsoft repair SharePoint 2 0 1 3 XSS vulnerabilities-the vulnerabilities and early warning-the black bar safety net

SharePoint is the Microsoft Office Suite in a tool for individuals and companies to create a portal page. The vulnerabilityCVE-2 0 1 5-2 5 2 2by FortiNet's FortiGuard Labs security researchers discovered the vulnerability affects SharePoint 2 0 1 3 15.0.4571.1502 early version. SharePoint is a...

7AI score
Exploits0
Fedora
Fedora
added 2015/09/18 7:37 p.m.15 views

[SECURITY] Fedora 23 Update: onionshare-0.7.1-1.fc23

OnionShare lets you securely and anonymously share files of any size. It wo rks by starting a web server, making it accessible as a Tor hidden service, and generating an unguessable URL to access and download files. It doesn't requ ire setting up a server on the internet somewhere or using a thir...

0.9AI score
Exploits0
The Hacker News
The Hacker News
added 2015/05/12 10:5 p.m.8 views

How to Share Sensitive Files Instantly and Securely

Last week, I have to communicate with my friend overseas in China. We both were aware that our email communications were being monitored. So, we both were forced to install and use a fully-fledged encrypted email system. Although it appeared to be very secure, it was quite cumbersome to handle. I...

6.9AI score
Exploits0
Kitploit
Kitploit
added 2014/05/24 6:35 p.m.56 views

Onionshare - Securely and anonymously share a file of any size

OnionShare lets you securely and anonymously share a file of any size with someone. It works by starting a web server, making it accessible as a Tor hidden service, and generating an unguessable URL access and download the file. It doesn't require setting up a server on the internet somewhere or...

7.5AI score
Exploits0References1
The Hacker News
The Hacker News
added 2013/01/07 2:46 a.m.13 views

Password reset Vulnerability in Facebook Employees Secure Files Transfer service

Many be many of you are not aware about this, but Facebook having a Secure Files Transfer service for their Employees at https://files.fb.com and Hacker reported a very critical password reset vulnerability. Nir Goldshlager, a researcher told 'The Hacker News' that how he defeat Facebook's Secure...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2006/01/24 12:0 a.m.2 views

Security Best Practice: Protection against CIFS Brute-Force Attacks

CIFS is an extension to the Message Block Server SMB protocol, a network protocol native to Windows systems which allows sharing of files and printers across a network. In recent years we have witnessed various worms attempting to compromise and spread through Windows machines with weak, default...

4.1AI score
Exploits0
Rows per page
Query Builder