Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML documents that are emailed to the address in the rua field of the DMARC records of a domain.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
modoboa-dmarc插件安全漏洞
Vulnerability Description
modoboa-dmarc插件1.1.0版本(用于Modoboa)中存在安全漏洞。攻击者可利用该漏洞泄露本地文件(包括密码,私有用户数据等敏感数据)
CVSS Information
N/A
Vulnerability Type
N/A