nilsteampassnet/teampass vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the nilsteampassnet/teampass package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M Cross-site Scripting (XSS)	<2.1.25
C SQL Injection	<2.1.25
M Improper Authorization	<3.1.3.1
M Improper Authorization	<3.1.3.1
C Authorization Bypass Through User-Controlled Key	<3.1.3.1
M Cross-site Scripting (XSS)	<3.0.10
M Information Exposure	<3.0.10
H Improper Input Validation	<3.0.10
H Remote Code Execution (RCE)	>=0.0.0, <3.0.10
H Cross-site Scripting (XSS)	>=0.0.0, <3.0.10
M Cross-site Scripting (XSS)	<3.0.9
L Cross-site Scripting (XSS)	<3.0.9
M Access Restriction Bypass	<3.0.9
H Cross-site Scripting (XSS)	<3.0.9
C Cross-site Scripting (XSS)	>=0.0.0, <3.0.10
M Cross-site Scripting (XSS)	<3.0.9
M Cross-site Scripting (XSS)	<3.0.9
H Cross-site Scripting (XSS)	<3.0.9
M Cross-site Scripting (XSS)	<3.0.7
M Cross-site Scripting (XSS)	<3.0.7
M Cross-site Scripting (XSS)	>=0.0.0, <3.0.10
H SQL Injection	>=0.0.0, <3.0.10
H SQL Injection	>=0.0.0, <3.0.10
M Improper Authorization	>=0.0.0, <3.0.10
H External Control of File Name or Path	>=0.0.0, <3.0.10
M Cross-site Scripting (XSS)	<3.0.0.10
C SQL Injection	<2.1.27.4
C Information Exposure	<2.1.27.0
M Access Restriction Bypass	>=0.0.0
H Unauthorized File Access	>=0.0.0, <3.0.10
M Access Restriction Bypass	>=0.0.0, <2.1.27
H Local File Inclusion	>=0.0.0
M Cross-site Scripting (XSS)	>=0.0.0
M Cross-site Scripting (XSS)	>=0.0.0
M Cross-site Scripting (XSS)	>=0.0.0, <3.0.10
C Cross-site Scripting (XSS)	<2.1.27.36
M Cross-site Scripting (XSS)	<2.1.27.9
M Cross-site Scripting (XSS)	<2.1.27.9
M Access Restriction Bypass	<2.1.27.9
H Access Restriction Bypass	<2.1.27.9
H Arbitrary File Upload	<2.1.27.9
M Access Restriction Bypass	<2.1.27.9

Vulnerability

Vulnerable Version

Cross-site Scripting (XSS)

<2.1.25