CVE-2023-0398

Name of the Vulnerable Software and Affected Versions modoboa/modoboa versions prior to 2.0.4

Description The issue is related to Cross-Site Request Forgery (CSRF) in the modoboa/modoboa GitHub repository. This can allow a remote attacker to impact the integrity and availability of protected information. The vulnerability may lead to the deletion of domains. A Proof of Concept (PoC) using Burp Suite Professional demonstrates the exploitation by submitting a form to delete a domain, specifically targeting the endpoint "http://127.0.0.1:8000/admin/domains/4/delete/".

Recommendations For versions prior to 2.0.4, update to version 2.0.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the admin/domains endpoint to minimize the risk of exploitation. Avoid using the delete functionality in the affected API endpoint until the issue is resolved.