Modoboa Modoboa vulnerabilities
13 known vulnerabilities affecting modoboa/modoboa_modoboa.
Total CVEs
13
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH1MEDIUM9
Vulnerabilities
Page 1 of 1
CVE-2023-2227P2CRITICALCVSS 9.1PoC≥ unspecified, < 2.1.02023-04-21
CVE-2023-2227 [CRITICAL] CWE-285 CVE-2023-2227: Improper Authorization in GitHub repository modoboa/modoboa prior to 2.1.0.
Improper Authorization in GitHub repository modoboa/modoboa prior to 2.1.0.
nvd
CVE-2023-0777P2CRITICALCVSS 9.8PoC≥ unspecified, < 2.0.42023-02-10
CVE-2023-0777 [CRITICAL] CWE-305 CVE-2023-0777: Authentication Bypass by Primary Weakness in GitHub repository modoboa/modoboa prior to 2.0.4.
Authentication Bypass by Primary Weakness in GitHub repository modoboa/modoboa prior to 2.0.4.
nvd
CVE-2023-2160P3CRITICALCVSS 9.8≥ unspecified, < 2.1.02023-04-18
CVE-2023-2160 [CRITICAL] CWE-521 CVE-2023-2160: Weak Password Requirements in GitHub repository modoboa/modoboa prior to 2.1.0.
Weak Password Requirements in GitHub repository modoboa/modoboa prior to 2.1.0.
nvd
CVE-2023-5690P3HIGHCVSS 8.8≥ unspecified, < 2.2.22023-10-20
CVE-2023-5690 [HIGH] CWE-352 CVE-2023-5690: Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.2.2.
Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.2.2.
nvd
CVE-2023-0398P4MEDIUMCVSS 6.5≥ unspecified, < 2.0.42023-01-19
CVE-2023-0398 [MEDIUM] CWE-352 CVE-2023-0398: Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.0.4.
Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.0.4.
nvd
CVE-2023-0438P4MEDIUMCVSS 6.5≥ unspecified, < 2.0.42023-01-23
CVE-2023-0438 [MEDIUM] CWE-352 CVE-2023-0438: Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.0.4.
Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.0.4.
nvd
CVE-2023-2228P4MEDIUMCVSS 6.8≥ unspecified, < 2.1.02023-04-21
CVE-2023-2228 [MEDIUM] CWE-352 CVE-2023-2228: Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.1.0.
Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.1.0.
nvd
CVE-2023-5688P4MEDIUMCVSS 5.4≥ unspecified, < 2.2.22023-10-20
CVE-2023-5688 [MEDIUM] CWE-79 CVE-2023-5688: Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2.
Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2.
nvd
CVE-2023-5689P4MEDIUMCVSS 5.4≥ unspecified, < 2.2.22023-10-20
CVE-2023-5689 [MEDIUM] CWE-79 CVE-2023-5689: Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2.
Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2.
nvd
CVE-2023-0470P4MEDIUMCVSS 5.4≥ unspecified, < 2.0.42023-01-26
CVE-2023-0470 [MEDIUM] CWE-79 CVE-2023-0470: Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modoboa prior to 2.0.4.
Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modoboa prior to 2.0.4.
nvd
CVE-2023-0519P4MEDIUMCVSS 5.4≥ unspecified, < 2.0.42023-01-26
CVE-2023-0519 [MEDIUM] CWE-79 CVE-2023-0519: Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modoboa prior to 2.0.4.
Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modoboa prior to 2.0.4.
nvd
CVE-2023-0949P4MEDIUMCVSS 4.8≥ unspecified, < 2.0.52023-02-22
CVE-2023-0949 [MEDIUM] CWE-79 CVE-2023-0949: Cross-site Scripting (XSS) - Reflected in GitHub repository modoboa/modoboa prior to 2.0.5.
Cross-site Scripting (XSS) - Reflected in GitHub repository modoboa/modoboa prior to 2.0.5.
nvd
CVE-2023-0406P4MEDIUMCVSS 4.3≥ unspecified, < 2.0.42023-01-19
CVE-2023-0406 [MEDIUM] CWE-352 CVE-2023-0406: Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.0.4.
Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.0.4.
nvd