PT-2023-18388 · Modoboa · Modoboa

Name of the Vulnerable Software and Affected Versions: modoboa/modoboa versions prior to 2.1.0 Description: The issue is related to improper authorization in the modoboa/modoboa GitHub repository. Specifically, sending a GET request to the endpoint "/api/v2/parameters/core/" returns sensitive...

modoboa 授权问题漏洞

modoboa is an email hosting and management platform for individual developers. An information disclosure vulnerability exists in modoboa versions prior to 2.1.0, which originates when /api/v2/parameters/core/ returns sensitive information without any authentication or authorization. An attacker c...