Teampass Stored Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in Teampass versions prior to 3.1.5.16. This issue affects the password import functionality at the 'redacted/index.php?page=items' endpoint. The vulnerability arises because the application does not properly sanitize and encode user input during the import process, allowing malicious JavaScript payloads to be persistently stored in the database. When other users view the imported passwords, the payload is executed in their browsers, creating a stored XSS condition. This vulnerability enables attackers to execute arbitrary JavaScript code in the context of multiple users and the administrator, potentially leading to session hijacking, credential theft, privilege abuse, and a compromise of application integrity.

Impact

Exploitation of this vulnerability allows for the execution of arbitrary JavaScript in the context of the affected user, including the administrator. This could result in session hijacking, theft of credentials, abuse of privileges, and a general compromise of the application's integrity.

Remediation

Users can upgrade to Teampass version 3.1.5.24 to address this vulnerability.