EPSS
Percentile
23.5%
nilsteampassnet/teampass is vulnerable to Cross-Site Scripting (XSS). The vulnerability exists due to a lack of user input sanitization, which allows an attacker to inject arbitrary JavaScript code into a victim’s browser.
github.com/advisories/GHSA-2ffp-w665-9mgx
github.com/nilsteampassnet/teampass/commit/39b774cba118ca5383b0a51a71b1e7dea2761927
huntr.dev/bounties/19470f0b-7094-4339-8d4a-4b5570b54716