Vulnerability Database
Blog
FAQ
Docs
CVE-2023-3009
See a problem?
Please try reporting it
to the source
first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-3009
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-3009.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-3009
Aliases
GHSA-h5g9-2p35-54c7
Published
2023-05-31T13:15:10Z
Modified
2024-10-12T10:52:54.968525Z
Severity
5.4 (Medium)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
CVSS Calculator
Summary
[none]
Details
Cross-site Scripting (XSS) - Stored in GitHub repository nilsteampassnet/teampass prior to 3.0.9.
References
https://huntr.dev/bounties/2929faca-5822-4636-8f04-ca5e0001361f
https://github.com/nilsteampassnet/teampass/commit/6ba8cf1f4b89d62a08d122d533ccf4cb4e26a4ee
Affected packages
Git
/
github.com/nilsteampassnet/teampass
Affected ranges
Type
GIT
Repo
https://github.com/nilsteampassnet/teampass
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Fixed
6ba8cf1f4b89d62a08d122d533ccf4cb4e26a4ee
Affected versions
2.*
2.1
2.1.20
2.1.23.1
2.1.23.2
2.1.23.3
2.1.23.4
2.1.24.0
2.1.24.1
2.1.24.2
2.1.24.3
2.1.24.4
2.1.25.0
2.1.25.1
2.1.25.2
2.1.26
2.1.26-RC1
2.1.26-final
2.1.26-final-2
2.1.26-final-3
2.1.26.0
2.1.26.1
2.1.26.10
2.1.26.11
2.1.26.12
2.1.26.13
2.1.26.14
2.1.26.15
2.1.26.16
2.1.26.17
2.1.26.18
2.1.26.19
2.1.26.2
2.1.26.20
2.1.26.3
2.1.26.4
2.1.26.5
2.1.26.6
2.1.26.7
2.1.26.8
2.1.26.9
2.1.26_RC1
2.1.27.0
2.1.27.1
2.1.27.10
2.1.27.11
2.1.27.12
2.1.27.13
2.1.27.14
2.1.27.15
2.1.27.16
2.1.27.17
2.1.27.18
2.1.27.19
2.1.27.2
2.1.27.20
2.1.27.21
2.1.27.22
2.1.27.23
2.1.27.24
2.1.27.25
2.1.27.26
2.1.27.27
2.1.27.28
2.1.27.29
2.1.27.3
2.1.27.30
2.1.27.31
2.1.27.32
2.1.27.33
2.1.27.34
2.1.27.35
2.1.27.36
2.1.27.4
2.1.27.5
2.1.27.6
2.1.27.7
2.1.27.8
2.1.27.9
3.*
3.0.0.0
3.0.0.10
3.0.0.11
3.0.0.12
3.0.0.13
3.0.0.14
3.0.0.15
3.0.0.16
3.0.0.17
3.0.0.18
3.0.0.19
3.0.0.2
3.0.0.20
3.0.0.21
3.0.0.22
3.0.0.23
3.0.0.3
3.0.0.5
3.0.0.6
3.0.0.7
3.0.0.8
3.0.0.9
3.0.1
3.0.2
3.0.3
3.0.4
3.0.5
3.0.6
3.0.7
3.0.8
CVE-2023-3009 - OSV