0.012 Low
EPSS
Percentile
85.1%
modoboa is vulnerable to Missing Authorization. The vulnerability exists due to missing authorization checks on the /api/v2/parameters/core/ API endpoint which allows an attacker to gain sensitive information.
/api/v2/parameters/core/
github.com/advisories/GHSA-67mg-gm8m-ph5r
github.com/modoboa/modoboa/commit/7bcd3f6eb264d4e3e01071c97c2bac51cdd6fe97
github.com/modoboa/modoboa/pull/2888
huntr.dev/bounties/351f9055-2008-4af0-b820-01ff66678bf3
huntr.dev/bounties/351f9055-2008-4af0-b820-01ff66678bf3/