Lucene search
K

8 matches found

Github Security Blog
Github Security Blog
added 2022/01/21 11:20 p.m.22 views

Denial of Service in Onionshare

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. - Vulnerability ID: OTF-012 - Vulnerability type: Denial of Service - Threat level: Moderate Description: The receive mode...

7.5CVSS7.2AI score0.01374EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2022/01/21 11:20 p.m.18 views

GHSA-JH82-C5JW-PXPC Denial of Service in Onionshare

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. - Vulnerability ID: OTF-012 - Vulnerability type: Denial of Service - Threat level: Moderate Description: The receive mode...

8.7CVSS7.2AI score0.01374EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2022/01/21 11:20 p.m.30 views

OTF-001: Improper Input Sanitation: The path parameter of the requested URL is not sanitized before being passed to the QT frontend

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. This is an issue from that penetration test. - Vulnerability ID: OTF-001 - Vulnerability type: Improper Input Sanitization -...

8.7CVSS6.1AI score0.00789EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2022/01/21 11:20 p.m.22 views

GHSA-W9M4-7W72-R766 Improper Access Control in Onionshare

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. This is an issue from that penetration test. - Vulnerability ID: OTF-004 - Vulnerability type: Improper Access Control - Threa...

5.3CVSS4.8AI score0.00673EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2022/01/21 11:20 p.m.30 views

Improper Access Control in Onionshare

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. This is an issue from that penetration test. - Vulnerability ID: OTF-009 - Vulnerability type: Improper Access Control - Threa...

5.3CVSS1.1AI score0.00849EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2022/01/21 11:20 p.m.28 views

Username spoofing in OnionShare

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. This is an issue from that penetration test. - Vulnerability ID: OTF-005 - Vulnerability type: Improper Input Sanitization -...

4.3CVSS0.6AI score0.00708EPSS
Exploits0References5Affected Software1
ThreatPost
ThreatPost
added 2017/07/20 8:42 a.m.16 views

Tor Project Opens Bounty Program To All Researchers

The Tor Project announced today the launch of a public bug bounty program to encourage security researchers to privately report issues they find in the group’s software. Unlike its previous invite-only bounty program launched last year, this bounty program will be open to all bounty hunters throu...

7.7AI score
Exploits0References3
ThreatPost
ThreatPost
added 2016/01/04 11:45 a.m.16 views

Tor to Launch Bug Bounty Program in 2016

The Tor Project announced last week that it will launch a bug bounty program later this year to encourage security researchers to responsibly report issues they find in the software. Tor Browser and Tor Performance Developer Mike Perry announced the news during the “State of the Onion” address la...

7.6AI score
Exploits0References7
Rows per page
Query Builder