Critical severity9.8NVD Advisory· Published Jun 5, 2017· Updated May 13, 2026
CVE-2017-9436
CVE-2017-9436
Description
TeamPass before 2.1.27.4 is vulnerable to a SQL injection in users.queries.php.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
nilsteampassnet/teampassPackagist | < 2.1.27.5 | 2.1.27.5 |
Affected products
39cpe:2.3:a:teampass:teampass:2.1.20.0:*:*:*:*:*:*:*+ 38 more
- cpe:2.3:a:teampass:teampass:2.1.20.0:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.22.0:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.23.1:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.23.2:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.23.3:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.23.4:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.24.0:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.24.1:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.24.2:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.24.3:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.24.4:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.25.0:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.25.1:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.25.2:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.0:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.1:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.10:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.11:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.12:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.13:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.14:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.15:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.16:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.17:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.18:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.19:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.2:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.3:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.4:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.5:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.6:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.7:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.8:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.26.9:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.27.0:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.27.1:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.27.2:*:*:*:*:*:*:*
- cpe:2.3:a:teampass:teampass:2.1.27.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/nilsteampassnet/TeamPass/blob/master/changelog.mdnvdIssue TrackingPatchThird Party Advisory
- github.com/advisories/GHSA-cm26-gp8j-w6xfghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-9436ghsaADVISORY
- github.com/nilsteampassnet/TeamPass/blob/2.1.27.5/changelog.mdghsaWEB
News mentions
0No linked articles in our index yet.