Vessel9817

**Name of the Vulnerable Software and Affected Versions** onion-site-template versions including commit 3196bd89 **Description** onion-site-template, a complete and scalable Tor hidden service self-hosting sample, contains a baked-in Tor image when secrets are copied from an existing onion domain. A website could be compromised if a user shares the baked-in image or if an attacker gains access to the user's device outside of a containerized environment. **Recommendations** Update to a version that includes commit bc9ba0fd.