EPSS
Percentile
90.8%
modoboa is vulnerable to authentication bypass. The vulnerability exists due to lack of check conditions in the API throttling which allows an unauthorized user to perform brute-forcing attacks and gain access to the system.
packetstormsecurity.com/files/171744/modoboa-2.0.4-Admin-Takeover.html
github.com/advisories/GHSA-rfhw-fm4m-52j6
github.com/modoboa/modoboa/commit/47d17ac6643f870719691073956a26e4be0a4806
github.com/modoboa/modoboa/pull/2767
huntr.dev/bounties/a17e7a9f-0fee-4130-a522-5a0466fc17c7