Vulnerability Database
Blog
About
GHSA-9c64-x3cx-vgmm
Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/01/GHSA-9c64-x3cx-vgmm/GHSA-9c64-x3cx-vgmm.json
Aliases
CVE-2023-0438
Published
2023-01-23T15:30:33Z
Modified
2023-01-31T02:40:42.131872Z
Details
Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.0.4.
References
https://nvd.nist.gov/vuln/detail/CVE-2023-0438
https://github.com/modoboa/modoboa/commit/38d778cc71e370216e067d054ce0169ad83078c8
https://github.com/modoboa/modoboa
https://huntr.dev/bounties/07a5b61b-306d-47c4-8ff0-06c540c7dfb3
Affected packages
PyPI
/
modoboa
modoboa
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Fixed
2.0.4
Affected versions
0.*
0.7.0
1.*
1.10.0
1.10.1
1.10.2
1.10.3
1.10.4
1.10.5
1.10.6
1.10.7
1.11.0
1.11.1
1.12.0
1.12.1
1.12.2
1.13.0
1.13.1
1.14.0
1.15.0
1.16.0
1.16.1
1.17.0
1.2.0
1.2.0-rc2
1.2.1
1.2.2
1.3.0
1.3.1
1.3.2
1.3.3
1.3.4
1.3.5
1.4.1
1.4.2
1.4.3
1.4.4
1.4.5
1.5.0
1.5.1
1.5.2
1.5.3
1.6.0
1.6.1
1.6.2
1.6.3
1.7.0
1.7.1
1.7.2
1.7.3
1.7.4
1.8.0
1.8.1
1.8.2
1.8.3
1.9.0
1.9.1
2.*
2.0.0
2.0.0b1
2.0.0b2
2.0.0b3
2.0.1
2.0.2
2.0.3
GHSA-9c64-x3cx-vgmm - OSV