5 matches found
DEBIAN-CVE-2022-21696
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at the end of the nam...
CVE-2022-21696
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at the end of the nam...
CVE-2022-21696 Username spoofing in OnionShare
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at the end of the nam...
CVE-2022-21696 Username spoofing in OnionShare
OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at the end of the nam...
CVE-2022-21696
On OnionShare, a trailing-space condition in usernames allows impersonation via the chat rename feature. The issue arises from handling of username input (improper input sanitization), enabling an adversary with access to the chat environment to impersonate another participant by appending whites...