Lucene search
K

57 matches found

CNNVD
CNNVD
added 2023/04/29 12:0 a.m.7 views

KONGA 安全特征问题漏洞

KONGA is a full-featured, open source, multi-user GUI from the Dutch individual developer Panagis Tselentis. A security feature issue vulnerability exists in KONGA version 2.8.3, which stems from insufficient random values...

5.9CVSS4.9AI score0.00726EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/04/29 12:0 a.m.5 views

PT-2023-19459 · Konga · Konga

Name of the Vulnerable Software and Affected Versions: Konga version 2.8.3 Description: A problem was found in the Login API component, leading to insufficiently random values. The complexity of an attack is rather high, and the exploitability is difficult. The issue has been disclosed to the...

5.9CVSS7.2AI score0.00726EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2022/10/16 4:2 p.m.344 views

Exploit for CVE-2021-44103

CVE-2021-44103 A proof of concept for KONGA 0.14.9 - Privilege...

6.7AI score
Exploits2
NVD
NVD
added 2022/05/04 11:15 a.m.23 views

CVE-2021-42192

Konga v0.14.9 is affected by an incorrect access control vulnerability where a specially crafted request can lead to privilege escalation...

9CVSS0.09919EPSS
Exploits2References5
ATTACKERKB
ATTACKERKB
added 2022/05/04 11:15 a.m.3 views

CVE-2021-42192

Konga v0.14.9 is affected by an incorrect access control vulnerability where a specially crafted request can lead to privilege escalation...

9CVSS5.8AI score0.09919EPSS
Exploits2References7
OSV
OSV
added 2022/05/04 11:15 a.m.15 views

CVE-2021-42192

Konga v0.14.9 is affected by an incorrect access control vulnerability where a specially crafted request can lead to privilege escalation...

8.8CVSS6.8AI score
Exploits0References5
Prion
Prion
added 2022/05/04 11:15 a.m.16 views

Privilege escalation

Konga v0.14.9 is affected by an incorrect access control vulnerability where a specially crafted request can lead to privilege escalation...

9CVSS8.6AI score0.09919EPSS
Exploits2References4Affected Software1
Cvelist
Cvelist
added 2022/05/04 12:0 a.m.25 views

CVE-2021-42192

Konga v0.14.9 is affected by an incorrect access control vulnerability where a specially crafted request can lead to privilege escalation...

8.9AI score0.09919EPSS
Exploits2References5
Positive Technologies
Positive Technologies
added 2022/05/04 12:0 a.m.7 views

PT-2022-11555 · Konga · Konga

Name of the Vulnerable Software and Affected Versions: Konga version 0.14.9 Description: The issue is related to incorrect access control, allowing a specially crafted request to lead to privilege escalation. Recommendations: For Konga version 0.14.9, at the moment, there is no information about ...

9CVSS8.4AI score0.09919EPSS
Exploits2References10
CNNVD
CNNVD
added 2022/05/04 12:0 a.m.4 views

KONGA 安全漏洞

KONGA is a full-featured, open source, multi-user GUI from the Dutch individual developer Panagis Tselentis. A security vulnerability exists in KONGA version v0.14.9 that stems from incorrect access control. An attacker can exploit this vulnerability to elevate privileges via a specially crafted...

9CVSS7.9AI score0.09919EPSS
Exploits2References5
CVE
CVE
added 2022/05/04 12:0 a.m.139 views

CVE-2021-42192

CVE-2021-42192 affects KONGA v0.14.9 with an incorrect access control that allows privilege escalation via a crafted request. The attack vector demonstrated in the Nuclei template targets /api/user/{ID} with ADMIN privileges, enabling higher-privilege administration access. The underlying issue i...

9CVSS8.6AI score0.09919EPSS
Exploits2References5Affected Software1
CNVD
CNVD
added 2022/03/30 12:0 a.m.48 views

KONGA elevation of privilege vulnerability

KONGA is a full-featured open source, multi-user GUI from Dutch individual developer Panagis Tselentis. version 0.14.9 of KONGA contains an elevation of privilege vulnerability that could be exploited by attackers to gain full administrative access...

6.2AI score
Exploits2References1
CNNVD
CNNVD
added 2022/03/28 12:0 a.m.5 views

KONGA 安全漏洞

KONGA is a full-featured open source, multi-user GUI from Dutch individual developer Panagis Tselentis. version 0.14.9 of KONGA contains an elevation of privilege vulnerability that could be exploited by attackers to gain full administrative access...

5.6AI score
Exploits2References3
Packet Storm
Packet Storm
added 2021/11/15 12:0 a.m.523 views

KONGA 0.14.9 Privilege Escalation

Exploit Title: KONGA 0.14.9 - Privilege Escalation Date: 10/11/2021 Exploit Author: Fabricio Salomao & Paulo Trindade @paulotrindadec Vendor Homepage: https://github.com/pantsel/konga Software Link: https://github.com/pantsel/konga/archive/refs/tags/0.14.9.zip Version: 0.14.9 Tested on: Linux -...

7.1AI score
Exploits0
0day.today
0day.today
added 2021/11/15 12:0 a.m.379 views

KONGA 0.14.9 - Privilege Escalation Exploit

Exploit Title: KONGA 0.14.9 - Privilege Escalation Exploit Author: Fabricio Salomao & Paulo Trindade @paulotrindadec Vendor Homepage: https://github.com/pantsel/konga Software Link: https://github.com/pantsel/konga/archive/refs/tags/0.14.9.zip Version: 0.14.9 Tested on: Linux - Ubuntu 20.04.3 LTS...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2021/11/15 12:0 a.m.440 views

KONGA 0.14.9 - Privilege Escalation

Exploit Title: KONGA 0.14.9 - Privilege Escalation Date: 10/11/2021 Exploit Author: Fabricio Salomao & Paulo Trindade @paulotrindadec Vendor Homepage: https://github.com/pantsel/konga Software Link: https://github.com/pantsel/konga/archive/refs/tags/0.14.9.zip Version: 0.14.9 Tested on: Linux -...

7.4AI score
Exploits0
GithubExploit
GithubExploit
added 2021/10/15 8:19 p.m.6 views

Exploit for Incorrect Authorization in Konga_Project Konga

Konga Privilege Escalation - CVE-2021-42192 Authenticated Privil...

9CVSS7.5AI score0.09919EPSS
Exploits2
Rows per page
Query Builder