CVE-2023-0777

CRITICAL NUCLEI

modoboa < 2.0.4 - Authentication Bypass

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-0777. PoCs published by 7h3h4ckv157. A Nuclei detection template is also available.

AI-analyzed exploit summary This Go script exploits an authentication bypass vulnerability in Modoboa by brute-forcing admin credentials via the API endpoint. It sends multipart/form-data requests with a wordlist to bypass authentication and gain admin access.

Description

Authentication Bypass by Primary Weakness in GitHub repository modoboa/modoboa prior to 2.0.4.

Exploits (1)

exploitdb WORKING POC
by 7h3h4ckv157 · gowebappspython
https://www.exploit-db.com/exploits/51276

This Go script exploits an authentication bypass vulnerability in Modoboa by brute-forcing admin credentials via the API endpoint. It sends multipart/form-data requests with a wordlist to bypass authentication and gain admin access.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Modoboa prior to 2.0.4
No auth needed
Prerequisites: Target host · Admin username · Password wordlist
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Nuclei Templates (1)

modoboa 2.0.4 - Admin TakeOver
CRITICALVERIFIEDby r3Y3r53
Shodan: html:"Modoboa" || http.favicon.hash:1949005079 || http.html:"modoboa"
FOFA: body="Modoboa" || body="modoboa" || icon_hash=1949005079

References (3)

Core 3

Scores

CVSS v3 9.8
EPSS 0.7502
EPSS Percentile 98.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-305
Status published
Products (2)
modoboa/modoboa < 2.0.4
pypi/modoboa 0 - 2.0.4PyPI
Published Feb 10, 2023
Tracked Since Feb 18, 2026