CVE-2023-0398

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...

modoboa-automua (=1.0.0) potentially affected by CVE-2023-0398 via modoboa (=1.17.0)

modoboa PYPI version =1.17.0 is affected by a known vulnerability. The following packages have a transitive dependency on modoboa and may be impacted: - modoboa-automua =1.0.0 Source cves: CVE-2023-0398 Source advisory: OSV:PYSEC-2023-282...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...

PYSEC-2023-282

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...

PYSEC-2023-282

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...

CVE-2023-0398 Cross-Site Request Forgery (CSRF) in modoboa/modoboa

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...

modoboa 跨站请求伪造漏洞

modoboa is an email hosting and management platform for individual developers. modoboa versions prior to 2.0.4 are vulnerable to cross-site request forgery. An attacker could exploit this vulnerability to perform cross-site request forgery CSRF attacks...

modoboa 跨站请求伪造漏洞

modoboa is an email hosting and management platform for individual developers. modoboa versions prior to 2.0.4 are vulnerable to cross-site request forgery. An attacker could exploit this vulnerability to perform cross-site request forgery CSRF attacks...

CVE-2023-0406 Cross-Site Request Forgery (CSRF) in modoboa/modoboa

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...

PT-2023-16247 · Modoboa · Modoboa

Name of the Vulnerable Software and Affected Versions: modoboa/modoboa versions prior to 2.0.4 Description: The issue is related to Cross-Site Request Forgery CSRF in the modoboa/modoboa GitHub repository. Recommendations: For versions prior to 2.0.4, update to version 2.0.4 or later to resolve t...

PT-2023-6844 · Modoboa · Modoboa

Name of the Vulnerable Software and Affected Versions: modoboa/modoboa versions prior to 2.0.4 Description: The issue is related to Cross-Site Request Forgery CSRF in the modoboa/modoboa GitHub repository. This can allow a remote attacker to impact the integrity and availability of protected...

CVE-2023-0406

The CVE-2023-0406 case concerns the modoboa/modoboa project, where a Cross-Site Request Forgery (CSRF) vulnerability affects versions prior to 2.0.4. The available connected records consistently identify the issue as a CSRF in the GitHub repository modoboa/modoboa and describe the functional impa...

CVE-2023-0398

Modoboa/modoboa prior to 2.0.4 is vulnerable to Cross-Site Request Forgery (CSRF). The CSRF flaw allows an attacker to induce state-changing requests in an authenticated user session. The issue is fixed in the 2.0.4 patch release; upgrading to 2.0.4 or applying the patch is the recommended remedi...

CVE-2023-0406 Cross-Site Request Forgery (CSRF) in modoboa/modoboa

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...

CVE-2023-0398 Cross-Site Request Forgery (CSRF) in modoboa/modoboa

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...

CVE-2023-0398 Cross-Site Request Forgery (CSRF) in modoboa/modoboa

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...

CVE-2023-0406 Cross-Site Request Forgery (CSRF) in modoboa/modoboa

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...

GHSA-VC42-MGR2-W34R Modoboa is vulnerable to an XML External Entity Injection (XXE)

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

Modoboa is vulnerable to an XML External Entity Injection (XXE)

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

Fedora 32 : roundcubemail (2020-aeffd92b77)

RELEASE 1.4.6 - Installer: Fix regression in SMTP test section 7417 ---- RELEASE 1.4.5 - Fix bug in extracting required plugins from composer.json that led to spurious error in log 7364 - Fix so the database setup description is compatible with MySQL 8 7340 - Markasjunk: Fix regression in jsevent...