Vulnerabilities > Modoboa > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-20 | CVE-2023-5688 | Cross-site Scripting vulnerability in Modoboa Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2. | 5.4 |
| 2023-10-20 | CVE-2023-5689 | Cross-site Scripting vulnerability in Modoboa Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2. | 5.4 |
| 2023-04-21 | CVE-2023-2228 | Cross-Site Request Forgery (CSRF) vulnerability in Modoboa 2.0.4 Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.1.0. | 6.8 |
| 2023-02-22 | CVE-2023-0949 | Cross-site Scripting vulnerability in Modoboa 2.0.4 Cross-site Scripting (XSS) - Reflected in GitHub repository modoboa/modoboa prior to 2.0.5. | 4.8 |
| 2023-01-26 | CVE-2023-0519 | Cross-site Scripting vulnerability in Modoboa Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modoboa prior to 2.0.4. | 5.4 |
| 2023-01-26 | CVE-2023-0470 | Cross-site Scripting vulnerability in Modoboa Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modoboa prior to 2.0.4. | 5.4 |
| 2023-01-23 | CVE-2023-0438 | Cross-Site Request Forgery (CSRF) vulnerability in Modoboa Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.0.4. | 6.5 |
| 2023-01-19 | CVE-2023-0406 | Cross-Site Request Forgery (CSRF) vulnerability in Modoboa Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.0.4. | 4.3 |
| 2023-01-19 | CVE-2023-0398 | Cross-Site Request Forgery (CSRF) vulnerability in Modoboa Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.0.4. | 6.5 |
| 2019-12-10 | CVE-2019-19702 | XML Injection (aka Blind XPath Injection) vulnerability in Modoboa Modoboa-Dmarc 1.1.0 The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. | 5.0 |