CVE-2023-2859

HIGH

nilsteampassnet/teampass <3.0.9 - Code Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-2859. PoCs published by mnqazi.

AI-analyzed exploit summary The repository describes a stored HTML injection vulnerability in TeamPass < 3.0.9, where malicious HTML code can be injected into the FolderName field, potentially leading to data theft or redirect attacks when an administrator interacts with the compromised folder.

Description

Code Injection in GitHub repository nilsteampassnet/teampass prior to 3.0.9.

Exploits (1)

nomisec WRITEUP

by mnqazi · poc

https://github.com/mnqazi/CVE-2023-2859

View Code ZIP pw:eip

The repository describes a stored HTML injection vulnerability in TeamPass < 3.0.9, where malicious HTML code can be injected into the FolderName field, potentially leading to data theft or redirect attacks when an administrator interacts with the compromised folder.

Classification

Writeup 90%

Attack Type

Xss

Complexity

Moderate

Reliability

Reliable

Target: TeamPass < 3.0.9

Auth required

Prerequisites: Access to create or modify folders in TeamPass · Administrator interaction with the compromised folder

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2

Core References

Patch

https://github.com/nilsteampassnet/teampass/commit/1f51482a0c4d152ca876844212b0f8f3cb9387af

View Patch ZIP pw:eip

Exploit, Patch, Third Party Advisory

https://huntr.dev/bounties/d7b8ea75-c74a-4721-89bb-12e5c80fb0ba

Scores

CVSS v3 8.8

EPSS 0.0943

EPSS Percentile 93.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-94

Status published

Products (2)

nilsteampassnet/teampass 0 - 3.0.9Packagist

teampass/teampass < 3.0.9

Published May 24, 2023

Tracked Since Feb 18, 2026