Onionshare@* Security Vulnerabilities and Issues — Onionshare@* CVE List

Lucene search

OnionshareOnionshare*

9 matches found

CVE•added 2022/01/18 11:15 p.m.•108 views

CVE-2022-21694

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. The website mode of the onionshare allows to use a hardened CSP, which will block any scripts and external resources. It is not possible to configure thi...

5.3CVSS5AI score0.00413EPSS

CVE•added 2022/01/18 10:15 p.m.•86 views

CVE-2022-21693

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions an adversary with a primitive that allows for filesystem access from the context of the Onionshare process can access sensitive file...

6.5CVSS6.4AI score0.00368EPSS

CVE•added 2022/01/18 11:15 p.m.•84 views

CVE-2022-21692

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions anyone with access to the chat environment can write messages disguised as another chat participant.

4.3CVSS4.8AI score0.00152EPSS

CVE•added 2022/01/18 10:15 p.m.•80 views

CVE-2022-21688

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. Affected versions of the desktop application were found to be vulnerable to denial of service via an undisclosed vulnerability in the QT image parsing. R...

7.5CVSS5.8AI score0.00386EPSS

CVE•added 2022/01/18 10:15 p.m.•80 views

CVE-2022-21691

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions chat participants can spoof their channel leave message, tricking others into assuming they left the chatroom.

4.3CVSS4.8AI score0.00158EPSS

CVE•added 2022/01/18 10:15 p.m.•77 views

CVE-2022-21689

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions the receive mode limits concurrent uploads to 100 per second and blocks other uploads in the same second, which can be triggered by ...

7.5CVSS7.4AI score0.00097EPSS

CVE•added 2022/01/18 11:15 p.m.•77 views

CVE-2022-21690

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions The path parameter of the requested URL is not sanitized before being passed to the QT frontend. This path is used in all components...

8.7CVSS5.6AI score0.00329EPSS

CVE•added 2022/01/18 10:15 p.m.•76 views

CVE-2022-21695

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions authenticated users (or unauthenticated in public mode) can send messages without being visible in the list of chat participants. Th...

5.3CVSS5.1AI score0.00211EPSS

CVE•added 2022/01/18 8:15 p.m.•74 views

CVE-2022-21696

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at the end of the name ...

4.3CVSS4.8AI score0.00209EPSS