Page 5 of 21 results (0.002 seconds)
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1
CVE-2019-12950
https://notcve.org/view.php?id=CVE-2019-12950
An issue was discovered in TeamPass 2.1.27.35. From the sources/items.queries.php "Import items" feature, it is possible to load a crafted CSV file with an XSS payload. Se detectó un problema en TeamPass versión 2.1.27.35. Desde la funcionalidad "Import items" del archivo sources/items.queries.php, es posible cargar un archivo CSV diseñado con una carga útil de tipo XSS. • https://github.com/nilsteampassnet/TeamPass/issues/2638 https://github.com/nilsteampassnet/TeamPass/releases • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •