CVE-2023-3009

MEDIUM

nilsteampassnet/teampass <3.0.9 - XSS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-3009. PoCs published by mnqazi.

AI-analyzed exploit summary This repository describes a stored XSS vulnerability in TeamPass < 3.0.9, bypassing CVE-2023-2516. The exploit involves creating a malicious item name in a shared folder, triggering XSS when accessed by other users.

Description

Cross-site Scripting (XSS) - Stored in GitHub repository nilsteampassnet/teampass prior to 3.0.9.

Exploits (1)

nomisec WRITEUP

by mnqazi · poc

https://github.com/mnqazi/CVE-2023-3009

View Code ZIP pw:eip

This repository describes a stored XSS vulnerability in TeamPass < 3.0.9, bypassing CVE-2023-2516. The exploit involves creating a malicious item name in a shared folder, triggering XSS when accessed by other users.

Classification

Writeup 90%

Attack Type

Xss

Complexity

Moderate

Reliability

Reliable

Target: TeamPass < 3.0.9

Auth required

Prerequisites: Access to a shared folder in TeamPass · Ability to create items in the folder

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Patch

https://github.com/nilsteampassnet/teampass/commit/6ba8cf1f4b89d62a08d122d533ccf4cb4e26a4ee

View Patch ZIP pw:eip

Exploit, Patch

https://huntr.dev/bounties/2929faca-5822-4636-8f04-ca5e0001361f

Scores

CVSS v3 5.4

EPSS 0.0100

EPSS Percentile 77.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-79

Status published

Products (2)

nilsteampassnet/teampass 0 - 3.0.9Packagist

teampass/teampass < 3.0.9

Published May 31, 2023

Tracked Since Feb 18, 2026