Intrusion Prevention

Teampass.upload.files.php.Arbitrary.File.Upload

Description

This indicates an attack attempt to exploit a remote Code Execution vulnerability in Teampass.
The vulnerability is due to a lack of input validation when processing file uploading HTTP requests. An attacker can exploit this to execute arbitrary code within the context of the target application, via a crafted request.

Affected Products

Teampass.net Teampass prior to 2.1.26.4

Impact

System Compromise: Remote attackers can execute arbitrary code within the context of the target application.

Recommended Actions

Apply the latest patch from the vendor.
https://github.com/nilsteampassnet/TeamPass/commit/4212d040ec079ea0e010a07626795b018f2f4e7e