4 matches found
CVE-2023-0398
Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...
modoboa-automua (=1.0.0) potentially affected by CVE-2023-0398 via modoboa (=1.17.0)
modoboa PYPI version =1.17.0 is affected by a known vulnerability. The following packages have a transitive dependency on modoboa and may be impacted: - modoboa-automua =1.0.0 Source cves: CVE-2023-0398 Source advisory: OSV:PYSEC-2023-282...
CVE-2023-0398 Cross-Site Request Forgery (CSRF) in modoboa/modoboa
Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...
CVE-2023-0398
Modoboa/modoboa prior to 2.0.4 is vulnerable to Cross-Site Request Forgery (CSRF). The CSRF flaw allows an attacker to induce state-changing requests in an authenticated user session. The issue is fixed in the 2.0.4 patch release; upgrading to 2.0.4 or applying the patch is the recommended remedi...