2 matches found
TeamPass <= 2.1.27.36 Multiple XSS Vulnerabilities
TeamPass is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2019-12950
CVE-2019-12950 affects TeamPass 2.1.27.35. The issue is a Cross-site Scripting (XSS) vulnerability in the sources/items.queries.php "Import items" feature, where loading a crafted CSV file can carry an XSS payload. Root cause: parsing a manipulated CSV leads to client-side script execution. Explo...