Konga Project: >> Konga Security Vulnerabilities
An issue discovered in Konga 0.14.9 allows remote attackers to manipulate user accounts regardless of privilege via crafted POST request.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-05-01
Konga v0.14.9 is affected by an incorrect access control vulnerability where a specially crafted request can lead to privilege escalation.
CVSS Score
8.8
EPSS Score
0.33
Published
2022-05-04