CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-1536

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.0027EPSS

Exploits1References3

OSV•added 2024/05/14 4:17 p.m.•3 views

CVE-2024-34243

Konga v0.14.9 is vulnerable to Cross Site Scripting XSS via the username parameter...

5.4CVSS5.8AI score0.0027EPSS

Exploits1References1

Positive Technologies•added 2024/05/14 12:0 a.m.•3 views

PT-2024-25763 · Konga · Konga

Name of the Vulnerable Software and Affected Versions: Konga version 0.14.9 Description: The issue allows for Cross Site Scripting XSS via the username parameter. Recommendations: For Konga version 0.14.9, avoid using the username parameter until the issue is resolved...

6.1CVSS5.2AI score0.0027EPSS

Exploits1References5

OSV•added 2023/08/16 10:15 p.m.•0 views

CVE-2023-39846

An issue in Konga v0.14.9 allows attackers to bypass authentication via a crafted JWT token...

9.8CVSS5.8AI score

Exploits0References1

CNNVD•added 2023/08/16 12:0 a.m.•1 views

Konga 授权问题漏洞

KONGA is a full-featured, open source, multi-user GUI from the Dutch individual developer Panagis Tselentis. A security vulnerability exists in Konga version v0.14.9, which stems from a vulnerability that allows an attacker to bypass authentication via a crafted JWT token...

9.8CVSS8.4AI score0.0019EPSS

Exploits1References2

Positive Technologies•added 2023/05/01 12:0 a.m.•3 views

PT-2023-20890 · Konga · Konga

Name of the Vulnerable Software and Affected Versions: Konga version 0.14.9 Description: An issue in Konga allows remote attackers to manipulate user accounts, regardless of privilege, via a crafted POST request. Recommendations: For Konga version 0.14.9, at the moment, there is no information...

6.5CVSS6.9AI score0.00246EPSS

Exploits1References7

CNNVD•added 2023/05/01 12:0 a.m.•3 views

Konga 安全漏洞

KONGA is a full-featured, open source, multi-user GUI from the Dutch individual developer Panagis Tselentis. A security vulnerability exists in Konga version 0.14.9, which stems from a vulnerability that could allow a remote attacker to manipulate user accounts via a crafted POST request...

6.5CVSS6.5AI score0.00246EPSS

Exploits1References4

CNNVD•added 2022/05/04 12:0 a.m.•1 views

KONGA 安全漏洞

KONGA is a full-featured, open source, multi-user GUI from the Dutch individual developer Panagis Tselentis. A security vulnerability exists in KONGA version v0.14.9 that stems from incorrect access control. An attacker can exploit this vulnerability to elevate privileges via a specially crafted...

9CVSS7.9AI score0.23456EPSS

Exploits2References5

Positive Technologies•added 2022/05/04 12:0 a.m.•3 views

PT-2022-11555 · Konga · Konga

Name of the Vulnerable Software and Affected Versions: Konga version 0.14.9 Description: The issue is related to incorrect access control, allowing a specially crafted request to lead to privilege escalation. Recommendations: For Konga version 0.14.9, at the moment, there is no information about ...

9CVSS8.4AI score0.23456EPSS

Exploits2References10

CNVD•added 2022/03/30 12:0 a.m.•28 views

KONGA elevation of privilege vulnerability

KONGA is a full-featured open source, multi-user GUI from Dutch individual developer Panagis Tselentis. version 0.14.9 of KONGA contains an elevation of privilege vulnerability that could be exploited by attackers to gain full administrative access...

6.2AI score

Exploits2References1

CNNVD•added 2022/03/28 12:0 a.m.•2 views

KONGA 安全漏洞

5.6AI score

Exploits2References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by