Medium severity5.4NVD Advisory· Published Sep 26, 2019· Updated Jun 17, 2026
CVE-2019-16904
CVE-2019-16904
Description
TeamPass 2.1.27.36 allows Stored XSS by setting a crafted password for an item in a common available folder or sharing the item with an admin. (The crafted password is exploitable when viewing the change history of the item or tapping on the item.)
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
nilsteampassnet/teampassPackagist | <= 2.1.27.36 | — |
Affected products
2- TeamPass/TeamPassdescription
Patches
Vulnerability mechanics
References
4- github.com/nilsteampassnet/TeamPass/issues/2685nvdExploitThird Party AdvisoryWEB
- github.com/advisories/GHSA-rpmr-fwh5-24fmghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-16904ghsaADVISORY
- github.com/nilsteampassnet/TeamPass/issues/2734ghsaWEB
News mentions
0No linked articles in our index yet.