Lucene search

CVE-2023-2021

🗓️ 13 Apr 2023 12:08:15Reported by @huntrdevType

CVE-2023-2021 Cross-site Scripting (XSS) in GitHub repository nilsteampassnet/teampas

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 10
OSV	nilsteampassnet/teampass vulnerable to stored cross-site scripting (XSS)	13 Apr 202312:30	–	osv
OSV	CVE-2023-2021	13 Apr 202312:15	–	osv
Veracode	Cross-Site Scripting (XSS)	2 May 202306:06	–	veracode
Prion	Cross site scripting	13 Apr 202312:15	–	prion
NVD	CVE-2023-2021	13 Apr 202312:15	–	nvd
Github Security Blog	nilsteampassnet/teampass vulnerable to stored cross-site scripting (XSS)	13 Apr 202312:30	–	github
Cvelist	CVE-2023-2021 Cross-site Scripting (XSS) - Stored in nilsteampassnet/teampass	13 Apr 202300:00	–	cvelist
Vulnrichment	CVE-2023-2021 Cross-site Scripting (XSS) - Stored in nilsteampassnet/teampass	13 Apr 202300:00	–	vulnrichment
Huntr	Stored XSS on function item with folder	5 Apr 202316:13	–	huntr
OpenVAS	TeamPass < 3.0.3 XSS Vulnerability	17 Apr 202300:00	–	openvas

Nvd

Node

teampass teampassRange<3.0.3

[
  {
    "vendor": "nilsteampassnet",
    "product": "nilsteampassnet/teampass",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "3.0.3",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
huntr	www.huntr.dev/bounties/2e31082d-7aeb-46ff-84d6-9561758e3bf0
github	www.github.com/nilsteampassnet/teampass/commit/77c541a0151841d1f4ceb0a84ca391e1b526d58d

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Apr 2023 12:15Current

5.2Medium risk

Vulners AI Score5.2

CVSS35.4 - 5.8

EPSS0.00058

SSVC

CWE-79