Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 2023/08/16 10:15 p.m.5 views

CVE-2023-39846

An issue in Konga v0.14.9 allows attackers to bypass authentication via a crafted JWT token...

9.8CVSS7.4AI score0.00897EPSS
Exploits1References2
Prion
Prion
added 2023/05/01 10:15 p.m.11 views

Cross site request forgery (csrf)

An issue discovered in Konga 0.14.9 allows remote attackers to manipulate user accounts regardless of privilege via crafted POST request...

4CVSS6.6AI score0.0108EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/05/01 12:0 a.m.17 views

CVE-2023-26987

An issue discovered in Konga 0.14.9 allows remote attackers to manipulate user accounts regardless of privilege via crafted POST request...

6.7AI score0.0108EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/05/04 11:15 a.m.3 views

CVE-2021-42192

Konga v0.14.9 is affected by an incorrect access control vulnerability where a specially crafted request can lead to privilege escalation...

9CVSS5.8AI score0.09919EPSS
Exploits2References7
Packet Storm
Packet Storm
added 2021/11/15 12:0 a.m.523 views

KONGA 0.14.9 Privilege Escalation

Exploit Title: KONGA 0.14.9 - Privilege Escalation Date: 10/11/2021 Exploit Author: Fabricio Salomao & Paulo Trindade @paulotrindadec Vendor Homepage: https://github.com/pantsel/konga Software Link: https://github.com/pantsel/konga/archive/refs/tags/0.14.9.zip Version: 0.14.9 Tested on: Linux -...

7.1AI score
Exploits0
0day.today
0day.today
added 2021/11/15 12:0 a.m.377 views

KONGA 0.14.9 - Privilege Escalation Exploit

Exploit Title: KONGA 0.14.9 - Privilege Escalation Exploit Author: Fabricio Salomao & Paulo Trindade @paulotrindadec Vendor Homepage: https://github.com/pantsel/konga Software Link: https://github.com/pantsel/konga/archive/refs/tags/0.14.9.zip Version: 0.14.9 Tested on: Linux - Ubuntu 20.04.3 LTS...

7.1AI score
Exploits0
Rows per page
Query Builder