CWE-285: CWE-285

Hono's JWT Auth Middleware lacks built-in audience (aud) claim verification, allowing valid tokens issued for different services to be accepted when m...

This vulnerability allows authorized Salt minions to inject arbitrary events onto the Salt Master's event bus. This can disrupt master operations, tri...

CVE-2025-26683 is an improper authorization vulnerability in Azure Playwright that allows unauthorized attackers to elevate privileges over a network....

CVE-2025-24418 is an improper authorization vulnerability in Adobe Commerce that allows low-privileged attackers to bypass security controls and escal...

The Single-user-chat WordPress plugin has an authorization bypass vulnerability that allows authenticated users with subscriber-level access or higher...

Parse Server versions before 6.5.9 and 7.3.0 with allowCustomObjectId enabled are vulnerable to privilege escalation. An attacker who can create new u...

The Zephyr Project Manager WordPress plugin has a privilege escalation vulnerability that allows authenticated users with subscriber-level access or h...

This vulnerability allows API keys with specific privileges to create new API keys with elevated privileges, leading to privilege escalation. It affec...

The VikBooking WordPress plugin before version 1.6.8 contains an authorization bypass vulnerability that allows authenticated users with subscriber-le...

CVE-2023-2950 is an improper authorization vulnerability in OpenEMR that allows authenticated users to access administrative functions without proper ...

CVE-2020-25716 is a privilege escalation vulnerability in CloudForms where users with specific group permissions can perform administrator-only action...

This vulnerability allows authenticated GitHub Enterprise Server users to modify pull request maintainer permissions without authorization, potentiall...

This vulnerability in Microsoft Power Apps allows authenticated attackers to execute arbitrary code remotely due to improper authorization checks. It ...

CVE-2025-21400 is a remote code execution vulnerability in Microsoft SharePoint Server that allows an authenticated attacker to execute arbitrary code...

This vulnerability allows authenticated remote attackers with level 15 privileges to bypass AAA command authorization checks when using SCP, enabling ...

This vulnerability in Android's Settings app allows malicious apps to access files from other user profiles without permission. It enables local privi...

This vulnerability in Windows App Package Installer allows attackers to elevate privileges on affected systems. An authenticated attacker could exploi...

CVE-2024-23667 is an improper authorization vulnerability in Fortinet FortiWebManager that allows attackers to execute unauthorized code or commands v...

CVE-2024-23670 is an improper authorization vulnerability in Fortinet FortiWebManager that allows attackers to execute unauthorized code or commands v...

This vulnerability in NVIDIA's Virtual GPU Manager allows guest operating systems to allocate unauthorized resources, potentially leading to code exec...

This vulnerability allows non-admin users to modify client configuration files to change the server URL, potentially redirecting communications to mal...

CVE-2022-3787 is a local privilege escalation vulnerability in device-mapper-multipath where attackers can bypass access controls by writing to UNIX d...

This vulnerability allows local attackers to bypass Galaxy Store's access controls and install applications without proper authorization. It affects S...

This CVE-2022-4062 vulnerability allows attackers with access to the localhost interface of EcoStruxure Power Commission to bypass authorization contr...

This vulnerability allows local attackers to escalate privileges on Windows systems by exploiting improper access control checks on named pipes. Attac...

AutoGPT versions 0.6.15 and below have an authorization bypass vulnerability in the external API's get_graph_execution_results endpoint. Authenticated...

This vulnerability allows unauthorized users to bypass MongoDB's authorization controls by exploiting a flaw in the $mergeCursors aggregation pipeline...

This vulnerability allows authenticated Harbor users to modify tag retention policies in projects they shouldn't have access to. Attackers can exploit...

This vulnerability allows authenticated Sentry users to download debug or artifact bundles from any organization or project without proper authorizati...

CVE-2022-3683 is an authorization bypass vulnerability in the SDM600 API web services that allows attackers to access sensitive data from insufficient...

MinIO versions before RELEASE.2021-03-04T00-53-13Z contain a policy bypass vulnerability where users with read-only permissions can create temporary u...

This CVE describes an improper authorization vulnerability in Kibana's Synthetic monitor endpoint that allows authenticated users to perform unauthori...

This vulnerability allows authenticated users with Storage, Server, or combined Server+Storage administrative roles in Hitachi Vantara NAS products to...

This vulnerability allows authenticated users with Storage administrative roles in SMU to access HNAS configuration backup and diagnostic data through...

This vulnerability allows authenticated operators in Gallagher Command Centre Server to improperly modify Division lineage due to insufficient privile...

An improper authorization vulnerability in OTRS 8's Websocket API backend allows authenticated agents to track user behavior and gain live system insi...

CVE-2026-25885 is an authentication bypass vulnerability in PolarLearn's WebSocket group chat functionality. Unauthenticated attackers can subscribe t...

LibreChat versions 0.0.6 through 0.7.7-rc1 have an exposed testing endpoint (/api/search/test) that allows unauthorized access to read arbitrary user ...

NETSCOUT nGeniusONE before version 6.4.0 b2350 has a broken authorization schema in the report module that allows unauthorized access to sensitive rep...

The IP2Location Country Blocker WordPress plugin exposes sensitive configuration settings to unauthenticated users due to missing capability checks. T...

This vulnerability allows unauthenticated attackers to access wishlist data they shouldn't have permission to view via an insecure direct object refer...

This vulnerability allows attackers to bypass Gradio's file access controls by changing the letter case of blocked file paths on case-insensitive file...

This CVE describes an authorization bypass vulnerability in Next.js middleware. Attackers can bypass pathname-based authorization checks for pages dir...

This vulnerability allows authenticated users with API access to escalate their privileges by adding themselves to any group, including administrative...

This vulnerability in authentik allows unauthenticated users to access sensitive API endpoints if they know specific object UUIDs. It affects authenti...

This vulnerability in the PayPal Official module for PrestaShop allows malicious customers to confirm orders even when PayPal payments are declined. A...

This vulnerability allows a remote attacker to bypass Chrome's Site Isolation security boundaries by crafting a malicious HTML page. Attackers could p...

This vulnerability allows attackers to bypass permission verification in ActivityTaskManagerService APIs, potentially disrupting system services. It a...

This vulnerability in OAuthenticator's GoogleOAuthenticator.hosted_domain feature allows unauthorized access to JupyterHub instances. Instead of restr...

This CVE describes an improper authorization vulnerability in HikCentral Professional where insufficient server-side validation allows attackers to ac...