Headline
CVE-2021-41868: Comparing v2.3.3...v2.4 · onionshare/onionshare
OnionShare 2.3 before 2.4 allows remote unauthenticated attackers to upload files on a non-public node when using the --receive functionality.
Related news
Researchers discover a new technique attackers could use to encode vulnerabilities into software while evading detection.
Three security vulnerabilities in Axis video products could open up the door to a bevy of different cyberattacks on businesses.
An information disclosure vulnerability in OnionShare 2.3 before 2.4 allows remote unauthenticated attackers to retrieve the full list of participants of a non-public OnionShare node via the --chat feature.
Jason Kent, hacker-in-residence at Cequence Security, discusses how to track user-agent connections to mobile and desktop APIs, to spot malicious activity.
We take a look at the latest additions to security researchers’ armoury
The operator behind OpenSUpdater is using a new way to sneak adware and other malware past security tools.