Vulnerabilities > Teampass > Low

DATE CVE VULNERABILITY TITLE RISK
2019-10-05 CVE-2019-17203 Cross-site Scripting vulnerability in Teampass 2.1.27.36
TeamPass 2.1.27.36 allows Stored XSS at the Search page by setting a crafted password for an item in any folder.
network
teampass CWE-79
3.5
3.5
2019-10-05 CVE-2019-17204 Cross-site Scripting vulnerability in Teampass 2.1.27.36
TeamPass 2.1.27.36 allows Stored XSS by setting a crafted Knowledge Base label and adding any available item.
network
teampass CWE-79
3.5
3.5
2019-09-26 CVE-2019-16904 Cross-site Scripting vulnerability in Teampass 2.1.27.36
TeamPass 2.1.27.36 allows Stored XSS by setting a crafted password for an item in a common available folder or sharing the item with an admin.
network
teampass CWE-79
3.5
3.5
2019-08-06 CVE-2019-12950 Cross-site Scripting vulnerability in Teampass 2.1.27.35
An issue was discovered in TeamPass 2.1.27.35.
network
teampass CWE-79
3.5
3.5
2017-11-27 CVE-2017-15051 Cross-site Scripting vulnerability in Teampass
Multiple stored cross-site scripting (XSS) vulnerabilities in TeamPass before 2.1.27.9 allow authenticated remote attackers to inject arbitrary web script or HTML via the (1) URL value of an item or (2) user log history.
network
teampass CWE-79
3.5
3.5
2017-10-12 CVE-2017-15278 Cross-site Scripting vulnerability in Teampass
Cross-Site Scripting (XSS) was discovered in TeamPass before 2.1.27.9.
network
teampass CWE-79
3.5
3.5