CVE-2019-12950

Опубликовано: 06 авг. 2019

Источник: debian

Описание

An issue was discovered in TeamPass 2.1.27.35. From the sources/items.queries.php "Import items" feature, it is possible to load a crafted CSV file with an XSS payload.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
teampass	itp			package

Связанные уязвимости

CVE-2019-12950

CVSS3: 5.4

nvd

больше 6 лет назад

An issue was discovered in TeamPass 2.1.27.35. From the sources/items.queries.php "Import items" feature, it is possible to load a crafted CSV file with an XSS payload.

GHSA-m3pp-jcpm-2vr9

CVSS3: 5.4

github

больше 3 лет назад

TeamPass Cross-site Scripting (XSS)