An issue discovered in Konga 0.14.9 allows remote attackers to manipulate user accounts regardless of privilege via crafted POST request.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Konga |
Konga_project |
0.14.9 (including) |
0.14.9 (including) |
References