CVE-2023-39846 Information

Description

An issue in Konga v0.14.9 allows attackers to bypass authentication via a crafted JWT token.

Reference

https://abyssaler.github.io/post/konga%20Unauthorized%20access