Lucene search
Tadjmen17BE9E8A-ABE8-41DB-987F-1D5B0686AE20HistoryMay 07, 2023 - 6:31 p.m.
Stored XSS on items in Folder in nilsteampassnet/teampass lead to ATO
2023-05-0718:31:08
tadjmen
www.huntr.dev
8
stored xss
teampass
folder
account takeover
EPSS
0.001
Percentile
44.3%
Description
Stored XSS on items in Folder in nilsteampassnet/teampass lead to ATO
Proof of Concept
POC on my Drive video: https://drive.google.com/file/d/1OsksHJxcaNNABIoabL_AwAKCu37S2VyT/view?usp=sharing
Related
prion
prion
Cross site scripting
2023-06-03 12:15:00
github
github
TeamPass vulnerable to stored Cross-site Scripting
2023-06-03 12:30:15
osv
osv
CVE-2023-3086
2023-06-03 12:15:09
TeamPass vulnerable to stored Cross-site Scripting
2023-06-03 12:30:15
veracode
veracode
Cross-Site Scripting (XSS)
2023-07-23 21:40:36
cve
cve
CVE-2023-3086
2023-06-03 12:15:09
cvelist
cvelist
nvd
nvd
CVE-2023-3086
2023-06-03 12:15:09
openvas
openvas
TeamPass < 3.0.9 Multiple Vulnerabilities
2023-05-25 00:00:00