Lucene search
K

273 matches found

Cvelist
Cvelist
added 2023/04/21 12:0 a.m.12 views

CVE-2023-2228 Cross-Site Request Forgery (CSRF) in modoboa/modoboa

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.1.0...

6.8CVSS6.9AI score0.00378EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/04/21 12:0 a.m.5 views

modoboa 跨站请求伪造漏洞

modoboa is an email hosting and management platform for individual developers. A cross-site request forgery vulnerability exists in modoboa versions prior to 2.1.0, which stems from /admin/accounts/id/edit/?activetab=default does not adequately validate that the request is from a trusted user. An...

6.8CVSS6.7AI score0.00378EPSS
Exploits1References3
CVE
CVE
added 2023/04/21 12:0 a.m.77 views

CVE-2023-2227

Modoboa

9.1CVSS9.3AI score0.43756EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/04/21 12:0 a.m.53 views

CVE-2023-2228

CVE-2023-2228 affects modoboa/modoboa prior to 2.1.0. The issue is a Cross-Site Request Forgery (CSRF) vulnerability in /admin/accounts/{id}/edit/?active_tab=default, stemming from insufficient request validation. Exploitation requires an authenticated admin user, potentially enabling changes to ...

6.8CVSS6.6AI score0.00378EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/21 12:0 a.m.6 views

CVE-2023-2228 Cross-Site Request Forgery (CSRF) in modoboa/modoboa

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.1.0...

6.8CVSS6.7AI score0.00378EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/04/21 12:0 a.m.5 views

CVE-2023-2227 Improper Authorization in modoboa/modoboa

Improper Authorization in GitHub repository modoboa/modoboa prior to 2.1.0...

9.1CVSS9.3AI score0.43756EPSS
Exploits1References2
OSV
OSV
added 2023/04/21 12:0 a.m.15 views

CVE-2023-2227 Improper Authorization in modoboa/modoboa

Improper Authorization in GitHub repository modoboa/modoboa prior to 2.1.0...

9.1CVSS9.2AI score0.43756EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2023/04/18 6:30 p.m.5 views

modoboa-automua (=1.0.0) potentially affected by CVE-2023-2160 via modoboa (=1.17.0)

modoboa PYPI version =1.17.0 is affected by a known vulnerability. The following packages have a transitive dependency on modoboa and may be impacted: - modoboa-automua =1.0.0 Source cves: CVE-2023-2160 Source advisory: OSV:GHSA-9GXX-32P7-FF7M...

9.8CVSS7.2AI score0.00619EPSS
Exploits1
OSV
OSV
added 2023/04/18 6:30 p.m.14 views

GHSA-9GXX-32P7-FF7M Modoboa has Weak Password Requirements

Modoboa 2.0.5 and prior allows users to set unsafe passwords, such as 1 or HACK. This issue is fixed in commit 130257c96a2392ada795785a91178e656e27015c and is part of version 2.1.0...

6.3CVSS7.3AI score0.00619EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2023/04/18 6:30 p.m.25 views

Modoboa has Weak Password Requirements

Modoboa 2.0.5 and prior allows users to set unsafe passwords, such as 1 or HACK. This issue is fixed in commit 130257c96a2392ada795785a91178e656e27015c and is part of version 2.1.0...

9.8CVSS7.3AI score0.00619EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2023/04/18 4:15 p.m.24 views

CVE-2023-2160

Weak Password Requirements in GitHub repository modoboa/modoboa prior to 2.1.0...

9.8CVSS7AI score0.00619EPSS
Exploits1References2
vulnersOsv
vulnersOsv
added 2023/04/18 4:15 p.m.5 views

modoboa-automua (=1.0.0) potentially affected by CVE-2023-2160 via modoboa (=1.17.0)

modoboa PYPI version =1.17.0 is affected by a known vulnerability. The following packages have a transitive dependency on modoboa and may be impacted: - modoboa-automua =1.0.0 Source cves: CVE-2023-2160 Source advisory: OSV:PYSEC-2023-34...

9.8CVSS6.9AI score0.00619EPSS
Exploits1
PyPA
PyPA
added 2023/04/18 4:15 p.m.6 views

PYSEC-2023-34

Weak Password Requirements in GitHub repository modoboa/modoboa prior to 2.1.0...

9.8CVSS6.8AI score0.00619EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2023/04/18 4:15 p.m.28 views

PYSEC-2023-34

Weak Password Requirements in GitHub repository modoboa/modoboa prior to 2.1.0...

9.8CVSS9.7AI score0.00619EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/04/18 12:0 a.m.4 views

modoboa 安全漏洞

modoboa is an email hosting and management platform for individual developers. A security vulnerability exists in modoboa versions prior to 2.1.0, which can be exploited to bypass a strong password policy by removing specific parameters and setting the password to 1...

9.8CVSS7.6AI score0.00619EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/04/18 12:0 a.m.26 views

CVE-2023-2160 Weak Password Requirements in modoboa/modoboa

Weak Password Requirements in GitHub repository modoboa/modoboa prior to 2.1.0...

6.3CVSS9.8AI score0.00619EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/04/18 12:0 a.m.3 views

PT-2023-18286 · Modoboa · Modoboa

Name of the Vulnerable Software and Affected Versions: modoboa/modoboa versions prior to 2.1.0 Description: The issue is related to weak password requirements in the modoboa/modoboa GitHub repository. Users can set unsafe passwords, such as 1 or HACK. This issue is fixed in version 2.1.0...

9.8CVSS9.2AI score0.00619EPSS
Exploits1References10
CVE
CVE
added 2023/04/18 12:0 a.m.93 views

CVE-2023-2160

The CVE pertains to modoboa/modoboa with weak password requirements prior to version 2.1.0. Several connected sources confirm that users could set unsafe passwords (e.g., 1, HACK) due to weak password policy, and that this was fixed in commit 130257c96a2392ada795785a91178e656e27015c and is addres...

9.8CVSS7.8AI score0.00619EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/18 12:0 a.m.7 views

CVE-2023-2160 Weak Password Requirements in modoboa/modoboa

Weak Password Requirements in GitHub repository modoboa/modoboa prior to 2.1.0...

6.3CVSS9.5AI score0.00619EPSS
Exploits1References2
OSV
OSV
added 2023/04/18 12:0 a.m.21 views

CVE-2023-2160 Weak Password Requirements in modoboa/modoboa

Weak Password Requirements in GitHub repository modoboa/modoboa prior to 2.1.0...

6.3CVSS9.4AI score0.00619EPSS
Exploits1References4
Rows per page
Query Builder