{"uuid": "a7efa262-8fb9-472a-a504-c069c0837131", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-2859", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/3555", "content": "Stored HTML Injection in folderName Affecting Admin in TeamPass <3.0.9 - CVE-2023-2859 (POC)\n\nOne such vulnerability is the Stored HTML Injection in folderName, affecting the administration functionality of TeamPass versions prior to 3.0.9. This vulnerability allows an attacker to inject malicious HTML code into the folderName parameter, leading to potential cross-site scripting (XSS) attacks.\n\nhttps://system32.ink/stored-html-injection-in-foldername-affecting-admin-in-teampass/", "creation_timestamp": "2023-05-25T17:50:58.000000Z"}