Vulnerability Database
Blog
FAQ
Docs
PYSEC-2023-36
See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/modoboa/PYSEC-2023-36.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2023-36
Aliases
CVE-2023-2228
GHSA-6pvf-cq4f-hfjp
Published
2023-04-21T13:15:00Z
Modified
2023-11-08T04:11:34.811717Z
Summary
[none]
Details
Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.1.0.
References
https://huntr.dev/bounties/619fb490-69ad-4a2a-b686-4c42a62404a9
https://github.com/modoboa/modoboa/commit/5d886f3d06373d2c3292911bac0772bcd5102343
Affected packages
PyPI
/
modoboa
Package
Name
modoboa
View open source insights on deps.dev
Purl
pkg:pypi/modoboa
Affected ranges
Type
GIT
Repo
https://github.com/modoboa/modoboa
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Fixed
5d886f3d06373d2c3292911bac0772bcd5102343
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2.1.0
Affected versions
0.*
0.7.0
1.*
1.2.0-rc2
1.2.0
1.2.1
1.2.2
1.3.0
1.3.1
1.3.2
1.3.3
1.3.4
1.3.5
1.4.1
1.4.2
1.4.3
1.4.4
1.4.5
1.5.0
1.5.1
1.5.2
1.5.3
1.6.0
1.6.1
1.6.2
1.6.3
1.7.0
1.7.1
1.7.2
1.7.3
1.7.4
1.8.0
1.8.1
1.8.2
1.8.3
1.9.0
1.9.1
1.10.0
1.10.1
1.10.2
1.10.3
1.10.4
1.10.5
1.10.6
1.10.7
1.11.0
1.11.1
1.12.0
1.12.1
1.12.2
1.13.0
1.13.1
1.14.0
1.15.0
1.16.0
1.16.1
1.17.0
2.*
2.0.0b1
2.0.0b2
2.0.0b3
2.0.0
2.0.1
2.0.2
2.0.3
2.0.4
2.0.5
PYSEC-2023-36 - OSV