A vulnerability classified as problematic has been found in Teampass up to 3.1.5.15 . The impacted element is an unknown function of the file redacted/index.php of the component Login Form . Performing a manipulation of the argument Username results in cross site scripting. This vulnerability is cataloged as CVE-2026-3106 . It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.