Cross-site Scripting (XSS) - Reflected in GitHub repository modoboa/modoboa prior to 2.0.5.
References
| Link | Resource |
|---|---|
| https://github.com/modoboa/modoboa/commit/aa74e9a4a870162eea169e0a6a2eab841f8811b7 | Patch |
| https://huntr.dev/bounties/ef87be4e-493b-4ee9-9738-44c55b8acc19 | Exploit Third Party Advisory |
| https://github.com/modoboa/modoboa/commit/aa74e9a4a870162eea169e0a6a2eab841f8811b7 | Patch |
| https://huntr.dev/bounties/ef87be4e-493b-4ee9-9738-44c55b8acc19 | Exploit Third Party Advisory |
Configurations
History
21 Nov 2024, 07:38
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/modoboa/modoboa/commit/aa74e9a4a870162eea169e0a6a2eab841f8811b7 - Patch | |
| References | () https://huntr.dev/bounties/ef87be4e-493b-4ee9-9738-44c55b8acc19 - Exploit, Third Party Advisory |
02 Mar 2023, 20:09
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.8 |
| References | (CONFIRM) https://huntr.dev/bounties/ef87be4e-493b-4ee9-9738-44c55b8acc19 - Exploit, Third Party Advisory | |
| References | (MISC) https://github.com/modoboa/modoboa/commit/aa74e9a4a870162eea169e0a6a2eab841f8811b7 - Patch | |
| CPE | cpe:2.3:a:modoboa:modoboa:*:*:*:*:*:modoboa:*:* |
22 Feb 2023, 14:03
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-02-22 09:15
Updated : 2024-11-21 07:38
NVD link : CVE-2023-0949
Mitre link : CVE-2023-0949
CVE.ORG link : CVE-2023-0949
JSON object : View
Products Affected
modoboa
- modoboa
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')