Teampass.upload.files.php.Arbitrary.File.Upload
Description
This indicates an attack attempt to exploit a remote Code Execution vulnerability in Teampass.
The vulnerability is due to a lack of input validation when processing file uploading HTTP requests. An attacker can exploit this to execute arbitrary code within the context of the target application, via a crafted request.
Affected Products
Teampass.net Teampass prior to 2.1.26.4
Impact
System Compromise: Remote attackers can execute arbitrary code within the context of the target application.
Recommended Actions
Apply the latest patch from the vendor.
https://github.com/nilsteampassnet/TeamPass/commit/4212d040ec079ea0e010a07626795b018f2f4e7e
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |