Open-source Mail Hosting and Management application, Modoboa <= v2.0.3, does not restrict unauthenticated login attempts allowing for brute force attacks at the login page.
Vulnerability discovered and reported by Kevin Suckiel (@0xsu3ks) January, 2023.