GSA_kwCzR0hTQS1wcHhtLXEyaDQtdjdtbc4AAyM6

High EPSS: 0.11323% (0.93249 Percentile) EPSS:

Permalink JSON

Teampass SQL Injection vulnerability

Affected Packages	Affected Versions	Fixed Versions
packagist:nilsteampassnet/teampass	< 3.0.0.22	3.0.0.22
0 Dependent packages 4 Dependent repositories 28 Downloads total Affected Version Ranges All affected versions All unaffected versions 2.1.21, 2.1.26, 2.1.27, 3.0.0, 3.0.10, 3.1.0, 3.1.1

SQL Injection in GitHub repository nilsteampassnet/teampass prior to 3.0.0.22.

References:

https://nvd.nist.gov/vuln/detail/CVE-2023-1545
https://github.com/nilsteampassnet/teampass/commit/4780252fdb600ef2ec2758f17a37d738570cbe66
https://huntr.dev/bounties/942c015f-7486-49b1-94ae-b1538d812bc2
https://github.com/advisories/GHSA-ppxm-q2h4-v7mm

Identifiers

GHSA-ppxm-q2h4-v7mm

CVE-2023-1545

Risk

Severity

High

EPSS

EPSS Percentage: 0.11323

EPSS Percentile: 0.93249

Classification

General

Source

GitHub Advisory Database

Origin

Unspecified

Repository

https://github.com/nilsteampassnet/teampass

Date and time

Published

over 2 years ago

Updated

16 days ago

API

JSON

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Advisories