{"id":"CVE-2016-5026","details":"hs.py in OnionShare before 0.9.1 allows local users to modify the hiddenservice by pre-creating the /tmp/onionshare directory.","modified":"2026-04-10T03:50:09.089441Z","published":"2017-01-30T22:59:00.420Z","references":[{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2016/05/23/5"},{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2016/05/24/9"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/90821"},{"type":"FIX","url":"https://github.com/micahflee/onionshare"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/micahflee/onionshare","events":[{"introduced":"0"},{"fixed":"08e43ca7bc5352dece82cc889844a344091a5091"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"0.9.1"}]}}],"versions":["0.2","0.3","0.4","0.5","0.6","0.7","0.7.1","0.8","v0.8.1","v0.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-5026.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"0.9.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"}]}