Pantsel Konga
2 CVEs affecting Pantsel Konga. Latest disclosed: 2024-05-14. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-39846 | Critical | 9.8 | 2023-08-16 | An issue in Konga v0.14.9 allows attackers to bypass authentication via a crafted JWT token. |
CVE-2024-34243 | Medium | 5.4 | 2024-05-14 | Konga v0.14.9 is vulnerable to Cross Site Scripting (XSS) via the username parameter. |