Vulnerabilities > Modoboa > Modoboa > 2.0.4

DATE CVE VULNERABILITY TITLE RISK
2023-10-20 CVE-2023-5688 Cross-site Scripting vulnerability in Modoboa
Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2.
network
low complexity
modoboa CWE-79
5.4
5.4
2023-10-20 CVE-2023-5689 Cross-site Scripting vulnerability in Modoboa
Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2.
network
low complexity
modoboa CWE-79
5.4
5.4
2023-10-20 CVE-2023-5690 Cross-Site Request Forgery (CSRF) vulnerability in Modoboa
Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.2.2.
network
low complexity
modoboa CWE-352
8.8
8.8
2023-04-21 CVE-2023-2227 Improper Authorization vulnerability in Modoboa 2.0.4
Improper Authorization in GitHub repository modoboa/modoboa prior to 2.1.0.
network
low complexity
modoboa CWE-285
critical
 9.1
9.1
2023-04-21 CVE-2023-2228 Cross-Site Request Forgery (CSRF) vulnerability in Modoboa 2.0.4
Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.1.0.
network
low complexity
modoboa CWE-352
6.8
6.8
2023-04-18 CVE-2023-2160 Weak Password Requirements vulnerability in Modoboa
Weak Password Requirements in GitHub repository modoboa/modoboa prior to 2.1.0.
network
low complexity
modoboa CWE-521
critical
 9.8
9.8
2023-02-22 CVE-2023-0949 Cross-site Scripting vulnerability in Modoboa 2.0.4
Cross-site Scripting (XSS) - Reflected in GitHub repository modoboa/modoboa prior to 2.0.5.
network
low complexity
modoboa CWE-79
4.8
4.8