Vulnerabilities > Modoboa

DATE CVE VULNERABILITY TITLE RISK
2023-10-20 CVE-2023-5688 Cross-site Scripting vulnerability in Modoboa
Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2.
network
low complexity
modoboa CWE-79
5.4
2023-10-20 CVE-2023-5689 Cross-site Scripting vulnerability in Modoboa
Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2.
network
low complexity
modoboa CWE-79
5.4
2023-10-20 CVE-2023-5690 Cross-Site Request Forgery (CSRF) vulnerability in Modoboa
Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.2.2.
network
low complexity
modoboa CWE-352
8.8
2023-04-21 CVE-2023-2227 Improper Authorization vulnerability in Modoboa 2.0.4
Improper Authorization in GitHub repository modoboa/modoboa prior to 2.1.0.
network
low complexity
modoboa CWE-285
critical
9.1
2023-04-21 CVE-2023-2228 Cross-Site Request Forgery (CSRF) vulnerability in Modoboa 2.0.4
Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.1.0.
network
low complexity
modoboa CWE-352
6.8
2023-04-18 CVE-2023-2160 Weak Password Requirements vulnerability in Modoboa
Weak Password Requirements in GitHub repository modoboa/modoboa prior to 2.1.0.
network
low complexity
modoboa CWE-521
critical
9.8
2023-02-22 CVE-2023-0949 Cross-site Scripting vulnerability in Modoboa 2.0.4
Cross-site Scripting (XSS) - Reflected in GitHub repository modoboa/modoboa prior to 2.0.5.
network
low complexity
modoboa CWE-79
4.8
2023-02-16 CVE-2023-0860 Improper Restriction of Excessive Authentication Attempts vulnerability in Modoboa Installer 2.0.3
Improper Restriction of Excessive Authentication Attempts in GitHub repository modoboa/modoboa-installer prior to 2.0.4.
network
low complexity
modoboa CWE-307
7.5
2023-02-10 CVE-2023-0777 Unspecified vulnerability in Modoboa
Authentication Bypass by Primary Weakness in GitHub repository modoboa/modoboa prior to 2.0.4.
network
low complexity
modoboa
critical
9.8
2023-01-26 CVE-2023-0519 Cross-site Scripting vulnerability in Modoboa
Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modoboa prior to 2.0.4.
network
low complexity
modoboa CWE-79
5.4