Vulnerabilities > Konga Project

DATE	CVE	VULNERABILITY TITLE	RISK
2023-05-01	CVE-2023-26987	Unspecified vulnerability in Konga Project Konga 0.14.9 An issue discovered in Konga 0.14.9 allows remote attackers to manipulate user accounts regardless of privilege via crafted POST request. network low complexity konga-project	6.5
2022-05-04	CVE-2021-42192	Incorrect Authorization vulnerability in Konga Project Konga 0.14.9 Konga v0.14.9 is affected by an incorrect access control vulnerability where a specially crafted request can lead to privilege escalation. network low complexity konga-project CWE-863	8.8

Vulnerabilities > Konga Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Konga Project"}]}