CVE-2023-5689

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-5689

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-5689.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-5689

Aliases

Published

2023-10-20T16:22:49.430Z

Modified

2025-11-28T02:35:31.609367Z

Severity

7.1 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

Cross-site Scripting (XSS) - DOM in modoboa/modoboa

Details

Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2.

Database specific

{
    "cna_assigner": "@huntrdev",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/5xxx/CVE-2023-5689.json",
    "cwe_ids": [
        "CWE-79"
    ]
}

References

Affected packages

Git / github.com/modoboa/modoboa

Affected ranges

Type: GIT
Repo: https://github.com/modoboa/modoboa
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

7cbe4b77722a353a73569b2ec53ca3db0a2776e4

Affected versions

0.*

0.1

0.2

0.3

0.5

0.6

0.6.1

0.7

0.7.1

0.7.2

0.8

0.8-rc1

0.8-rc2

0.8.1

0.8.2

0.8.3

0.8.3-rc1

0.8.4

0.8.5

0.8.6

0.8.6.1

0.8.7

0.8.8

0.9

0.9.1

0.9.2

0.9.3

0.9.4

0.9.5

1.*

1.0.0

1.0.1

1.1.0

1.1.1

1.1.2

1.1.3

1.1.4

1.1.5

1.1.6

1.1.7

1.10.0

1.10.1

1.10.2

1.10.3

1.10.4

1.10.5

1.10.6

1.10.7

1.11.0

1.11.1

1.12.0

1.12.1

1.12.2

1.13.0

1.13.1

1.14.0

1.15.0

1.16.0

1.16.1

1.17.0

1.2.0

1.2.0-rc1

1.2.0-rc2

1.2.1

1.3.0

1.3.1

1.3.2

1.3.3

1.3.4

1.3.5

1.4.0

1.4.1

1.4.2

1.4.3

1.4.4

1.4.5

1.5.0

1.5.1

1.5.2

1.5.3

1.6.0

1.6.1

1.7.0

1.7.1

1.7.2

1.7.3

1.7.4

1.8.0

1.8.1

1.8.2

1.8.3

1.9.0

1.9.1

2.*

2.0.0

2.0.0-beta.1

2.0.0-beta.2

2.0.0-beta.3

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5

2.1.0

2.1.1

2.1.2

2.2.0

2.2.1