AI Score
Confidence
High
EPSS
Percentile
34.8%
TeamPass 2.1.27.36 allows any authenticated TeamPass user to trigger a PHP file include vulnerability via a crafted HTTP request with sources/users.queries.php newValue directory traversal.
github.com/nilsteampassnet/TeamPass
github.com/nilsteampassnet/TeamPass/issues/2762
github.com/nilsteampassnet/TeamPass/pull/2874
nvd.nist.gov/vuln/detail/CVE-2020-12479