AVG-2436 log

Package onionshare
Status Fixed
Severity Medium
Type arbitrary file upload
Affected 2.2-5
Fixed 2.4-1
Current 2.6-1 [community]
Ticket None
Created Mon Oct 4 16:21:38 2021
Issue Severity Remote Type Description
CVE-2021-41868 Medium Yes Arbitrary file upload
OnionShare before 2.4 allows remote unauthenticated attackers to upload files on a non-public node when using the --receive functionality.