nilsteampassnet/teampass is vulnerable to remote code execution (RCE) attacks. A malicious user can modify the the parameters in a HTTP request to upload.files.php
to upload an arbitrary file that when accessed on the server is executed.
CPE | Name | Operator | Version |
---|---|---|---|
nilsteampassnet/teampass | le | 2.1.28.x-dev |