Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-0860 PoC — modoboa 安全漏洞

Source
https://github.com/0xsu3ks/CVE-2023-0860
Associated Vulnerability
Title:modoboa 安全漏洞 (CVE-2023-0860)
Description:modoboa是个人开发者的一个邮件托管和管理平台。 modoboa 2.0.4之前版本存在安全漏洞,该漏洞源于对过多的认证尝试限制不当。
Readme
# CVE-2023-0860 Brute Force on Modoboa Mail Hosting and Management application v2.0.3
***
Open-source Mail Hosting and Management application, Modoboa <= v2.0.3, does not restrict unauthenticated login attempts allowing for brute force attacks at the login page.

- https://www.cve.org/CVERecord?id=CVE-2023-0860

- https://nvd.nist.gov/vuln/detail/CVE-2023-0860

## Submitted through platform huntr.dev

- https://huntr.dev/bounties/64f3ab93-1357-4468-8ff4-52bbcec18cca/

Vulnerability discovered and reported by Kevin Suckiel (@0xsu3ks) January, 2023.
File Snapshot

 [4.0K]  /data/pocs/48f04c10df133e35d8e50eef45f99b77d075705a
└── [ 554]  README.md

0 directories, 1 file
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.