Stored XSS at Search page in nilsteampassnet/teampass
Jun 25th 2023
Create new item with XSS payload. Then go to Search page, XSS vulnerability will be trigger.
Proof of Concept
Tran Van Nhan from bl4ckh0l3 of GalaxyOne
This can potentially lead to a range of serious consequences, such as theft of sensitive data, unauthorized access to systems, and the ability to carry out further attacks.