pkg:Debian/onionshare

All known vulnerabilities

• CRITICAL9.8CVE-2021-41868Remote unauthenticated attackers able to upload files in Onionshare
  from 0
• HIGH8.7CVE-2022-21690OTF-001: Improper Input Sanitation: The path parameter of the requested URL is not sanitized before being passed to the QT frontend
  from 0, < 2.2-3+deb11u1
• HIGH7.5CVE-2022-21689Denial of Service in Onionshare
  from 0, < 2.2-3+deb11u1
• HIGH7.0CVE-2018-19960The debug_mode function in web/web.py in OnionShare through 1.3.1, when --debug is enabled, uses the /tmp/onionshare_server.log pathname fo…
  from 0, < 1.3.2-1
• MEDIUM6.3CVE-2022-21693Path traversal in Onionshare
  from 0, < 2.5-1
• MEDIUM5.5CVE-2016-5026hs.py in OnionShare before 0.9.1 allows local users to modify the hiddenservice by pre-creating the /tmp/onionshare directory.
  from 0, < 0.8.1-2
• MEDIUM5.3CVE-2021-41867Information disclosure vulnerability in OnionShare
  from 0, < 2.5-1
• MEDIUM4.3CVE-2022-21691Improper Access Control in Onionshare
  from 0, < 2.5-1
• MEDIUM4.3CVE-2022-21692Improper Access Control in Onionshare
  from 0, < 2.5-1
• MEDIUM4.3CVE-2022-21695Improper Access Control in Onionshare
  from 0, < 2.5-1
• MEDIUM4.3CVE-2022-21696Username spoofing in OnionShare
  from 0, < 2.5-1
• LOW3.7CVE-2022-21694Incorrect Permission Assignment for Critical Resource in OnionShare
  from 0