CVE-2024-9431 Information

Description

In version v0.0.14 of transformeroptimus/superagi there is an improper privilege management vulnerability. After logging into the system users can change the passwords of other users leading to potential account takeover.

Reference

https://huntr.com/bounties/9b33d7c1-ed0a-4f5b-a378-694570fd990b