← back
CVE-2023-0777

Authentication Bypass by Primary Weakness in modoboa/modoboa

CVSS 8.6 HIGHEPSS 15.1%CWE-305
Authentication Bypass by Primary Weakness in GitHub repository modoboa/modoboa prior to 2.0.4.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Affected products
modoboa · modoboa/modoboa
public PoCs found2
cve_referencepacketstormsecurity.com/files/171744/modoboa-2.0.4-Admin-Takeover.htmlunverifiedexploitdbwww.exploit-db.com/exploits/51276unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/171744/modoboa-2.0.4-Admin-Takeover.htmlhttps://github.com/modoboa/modoboa/commit/47d17ac6643f870719691073956a26e4be0a4806https://huntr.dev/bounties/a17e7a9f-0fee-4130-a522-5a0466fc17c7