Medium severity6.1NVD Advisory· Published Oct 5, 2019· Updated Jun 17, 2026
CVE-2019-17205
CVE-2019-17205
Description
TeamPass 2.1.27.36 allows Stored XSS by placing a payload in the username field during a login attempt. When an administrator looks at the log of failed logins, the XSS payload will be executed.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
nilsteampassnet/teampassPackagist | <= 2.1.27.36 | — |
Affected products
2- TeamPass/TeamPassdescription
Patches
Vulnerability mechanics
References
4- github.com/nilsteampassnet/TeamPass/issues/2688nvdExploitIssue TrackingThird Party AdvisoryWEB
- github.com/advisories/GHSA-v969-5v7f-pmg2ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-17205ghsaADVISORY
- github.com/nilsteampassnet/TeamPass/pull/2739/commits/ecdc6ca5a6e8c4b0b15d48f7e6327bf642fa6312ghsaWEB
News mentions
0No linked articles in our index yet.