Lucene search
@huntrdevCVELIST:CVE-2023-2591HistoryMay 09, 2023 - 12:00 a.m.
CVE-2023-2591 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in nilsteampassnet/teampass
2023-05-0900:00:00
CWE-79
@huntrdev
www.cve.org
cve-2023-2591
improper neutralization of input
7.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N
0.001 Low
EPSS
Percentile
23.7%
Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) in GitHub repository nilsteampassnet/teampass prior to 3.0.7.
CNA Affected
[
{
"vendor": "nilsteampassnet",
"product": "nilsteampassnet/teampass",
"versions": [
{
"version": "unspecified",
"lessThan": "3.0.7",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
osv
osv
CVE-2023-2591
2023-05-09 10:15:10
teampass vulnerable to code injection
2023-05-09 12:30:22
nvd
nvd
CVE-2023-2591
2023-05-09 10:15:10
github
github
teampass vulnerable to code injection
2023-05-09 12:30:22
huntr
huntr
Stored HTML Injection in Item Label
2023-05-07 12:40:59
cve
cve
CVE-2023-2591
2023-05-09 10:15:10
prion
prion
Cross site scripting
2023-05-09 10:15:00
openvas
openvas
TeamPass < 3.0.7 Multiple Vulnerabilities
2023-05-08 00:00:00
7.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N
0.001 Low
EPSS
Percentile
23.7%
Related for CVELIST:CVE-2023-2591