VYPR

PyPI package

modoboa-dmarc

pkg:pypi/modoboa-dmarc

Vulnerabilities (1)

  • CVE-2019-19702Dec 10, 2019
    affected < 1.2.0fixed 1.2.0

    The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/rando