TeamPass is vulnerable to authorization bypass. The application does not properly check if a user has the proper permissions to access an item, allowing a malicious user to modify or delete multiple attributes of an item by modifying requests sent to the application.
CPE | Name | Operator | Version |
---|---|---|---|
nilsteampassnet/teampass | le | 2.1.28.x-dev |