Lucene search
K

273 matches found

OSV
OSV
added 2022/05/24 5:3 p.m.4 views

GHSA-VC42-MGR2-W34R Modoboa is vulnerable to an XML External Entity Injection (XXE)

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

8.7CVSS7.6AI score0.01465EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2022/05/24 5:3 p.m.21 views

Modoboa is vulnerable to an XML External Entity Injection (XXE)

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

7.5CVSS7.2AI score0.01465EPSS
Exploits1References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/06/22 12:0 a.m.32 views

Fedora 32 : roundcubemail (2020-aeffd92b77)

RELEASE 1.4.6 - Installer: Fix regression in SMTP test section 7417 ---- RELEASE 1.4.5 - Fix bug in extracting required plugins from composer.json that led to spurious error in log 7364 - Fix so the database setup description is compatible with MySQL 8 7340 - Markasjunk: Fix regression in jsevent...

9.8CVSS7.4AI score0.84456EPSS
Exploits3References4
OSV
OSV
added 2019/12/10 8:15 p.m.16 views

CVE-2019-19702

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

7.5CVSS7.6AI score
Exploits0References1
NVD
NVD
added 2019/12/10 8:15 p.m.26 views

CVE-2019-19702

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

7.5CVSS7.6AI score0.01465EPSS
Exploits1References1
OSV
OSV
added 2019/12/10 8:15 p.m.26 views

PYSEC-2019-105

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

7.5CVSS3AI score0.01465EPSS
Exploits1References2
PyPA
PyPA
added 2019/12/10 8:15 p.m.6 views

PYSEC-2019-251

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

7.5CVSS7.2AI score0.01465EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2019/12/10 8:15 p.m.15 views

Xxe

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

5CVSS7.7AI score0.01465EPSS
Exploits1References1Affected Software1
PyPA
PyPA
added 2019/12/10 8:15 p.m.6 views

PYSEC-2019-105

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

7.5CVSS7.2AI score0.01465EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2019/12/10 8:15 p.m.12 views

PYSEC-2019-35

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

3AI score
Exploits0References1
OSV
OSV
added 2019/12/10 8:15 p.m.3 views

PYSEC-2019-251

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

7.5CVSS6AI score
Exploits0References1
CVE
CVE
added 2019/12/10 7:19 p.m.49 views

CVE-2019-19702

The CVE-2019-19702 entry affects the modoboa-dmarc plugin (Modoboa) 1.1.0, with an XML External Entity (XXE) flaw in XML processing. The root cause is how XML data is parsed for DMARC reporting, enabling a remote attacker to trigger a denial of service by referencing files (e.g., /dev/random) in ...

7.5CVSS7.5AI score0.01465EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/12/10 7:19 p.m.25 views

CVE-2019-19702

The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML...

7.6AI score0.01465EPSS
Exploits1References1
Rows per page
Query Builder