CVE-2023-5688

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Oct 20, 2023

Updated: Oct 27, 2023

CWE ID 79

Summary

CVE-2023-5688 is a Cross-Site Scripting (XSS) vulnerability affecting the modoboa/modoboa GitHub repository before version 2.2.2. An attacker can exploit this DOM-based XSS issue by injecting malicious scripts into web pages viewed by other users. Successful exploitation could lead to unintended execution of malicious code, potentially resulting in session hijacking or data theft. Users are advised to update their modoboa installations to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Modoboa

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tFMTDd
https://www.cve.org/CVERecord?id=CVE-2023-5688
https://nvd.nist.gov/vuln/detail/CVE-2023-5688

Back to Vulnerability Database

CVE-2023-5688

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations