Konga Project: >> Konga >> 0.14.9 Security Vulnerabilities
An issue discovered in Konga 0.14.9 allows remote attackers to manipulate user accounts regardless of privilege via crafted POST request.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-05-01
Konga v0.14.9 is affected by an incorrect access control vulnerability where a specially crafted request can lead to privilege escalation.
CVSS Score
8.8
EPSS Score
0.33
Published
2022-05-04