CWE-863: Incorrect Authorization

This vulnerability in mod_proxy_cluster allows unauthorized access to MCMP (Mod-Cluster Management Protocol) endpoints due to incorrect use of the <Di...

Mattermost fails to enforce channel conversion restrictions, allowing users with permission to convert public channels to private to also convert priv...

This vulnerability in Directus allows users with overlapping update permissions to modify fields they shouldn't have access to. When multiple policies...

This vulnerability in Oracle Primavera P6 Enterprise Project Portfolio Management allows authenticated attackers with low privileges to perform unauth...

This vulnerability in Oracle PeopleSoft Enterprise FIN eSettlements 9.2 allows authenticated attackers with low privileges to modify or delete some da...

This vulnerability in Oracle PeopleSoft Enterprise FIN Cash Management allows authenticated attackers with low privileges to modify or delete some dat...

This vulnerability in Mozilla's WebChannel API allows privilege escalation by accepting arbitrary principal information from untrusted sources. Attack...

This vulnerability allows unauthorized users to access functionality intended only for administrators in the WPChill Htaccess File Editor WordPress pl...

This CVE describes an incorrect authorization vulnerability in the Greenshift WordPress plugin that allows attackers to bypass access controls. It aff...

This CVE describes an indirect object reference (IDOR) vulnerability in Chef Habitat builder-api that allows unauthorized deletion of personal tokens....

This CVE describes an Improper Authorization vulnerability in Adobe Commerce that allows low-privileged attackers to bypass security measures. The vul...

This vulnerability allows unauthenticated attackers to bypass category restrictions in the User Submitted Posts WordPress plugin. Attackers can assign...

The Ajax Load More WordPress plugin has an authorization vulnerability that allows unauthenticated attackers to view titles and excerpts of private, d...

This CVE describes an incorrect authorization vulnerability in Drupal's Entity Share module that allows forceful browsing (unauthorized access to rest...

This CVE describes a logic error in Mastodon's user suspension feature that allows posts from suspended remote users to appear in timelines. All Masto...

The Float Payment Gateway WordPress plugin has an improper error handling vulnerability that allows unauthenticated attackers to mark any WooCommerce ...

The Templately WordPress plugin has an arbitrary file write vulnerability that allows unauthenticated attackers to create .ai.json files in the upload...

The Awesome Hotel Booking WordPress plugin has an authorization bypass vulnerability that allows unauthenticated attackers to modify booking records. ...

CVE-2025-9056 is an unprotected service vulnerability in the AudioLink component that allows local attackers to overwrite system files through unautho...

This vulnerability in grist-core allows users with partial read access to documents to view sensitive document history and changes they shouldn't have...

This vulnerability in the Flexible Refund and Return Order for WooCommerce WordPress plugin allows authenticated attackers with Contributor-level acce...

This vulnerability allows remote attackers to view images in blog entries without proper permission checks in Liferay Portal and DXP. Attackers can ac...

This vulnerability in Liferay Portal/DXP allows JSON Web Services to be invoked directly as classes, bypassing intended Service Access Policy controls...

This vulnerability in Tera Insights tiCrypt's tiaudit component allows unauthenticated attackers to make REST API requests that expose sensitive infor...

This CVE describes a permission precedence vulnerability in Deno where 'deny' flags don't properly override 'allow' flags when both are specified for ...

The Reales WP STPT WordPress plugin allows unauthenticated attackers to create user accounts without permission checks. This affects all WordPress sit...

This vulnerability in the Password Protected WordPress plugin allows unauthenticated attackers to extract all protected site content when the 'Use Tra...

An unauthenticated attacker can exploit this vulnerability via HTTP to read sensitive data from Oracle Communications Order and Service Management. Th...

An access control vulnerability in D-Link DIR-816 routers allows unauthenticated attackers to modify the agl service configuration via crafted POST re...

This CVE describes an incorrect authorization vulnerability in Drupal's Pages Restriction Access module that allows attackers to bypass access control...

This CVE describes an incorrect authorization vulnerability in Drupal's Responsive and off-canvas menu module that allows forceful browsing (accessing...

This CVE describes an incorrect authorization vulnerability in Drupal Commerce View Receipt that allows forceful browsing. Attackers can bypass intend...

This vulnerability allows non-member users to view internal notes in public GitLab merge requests. It affects GitLab CE/EE instances where public proj...

A suspended GitHub App could retain unauthorized access to public repositories via scoped user access tokens in GitHub Enterprise Server. This incorre...

This CVE describes an incorrect authorization vulnerability in Adobe Commerce that allows attackers to bypass security features and perform unauthoriz...

This macOS privilege escalation vulnerability allows local attackers to gain elevated system privileges. It affects macOS Ventura, Sonoma, and Sequoia...

This vulnerability allows a non-server device token to retrieve other users' access tokens via the clients.plex.tv/devices.xml endpoint. This affects ...

This vulnerability allows a non-server device token to retrieve share tokens intended for unrelated access via the shared_servers endpoint in Plex Med...

Step CA versions before 0.29.0 have an improper authorization check for SSH certificate revocation when using SSHPOP provisioner. This allows unauthor...

The Restaurant Brands International assistant platform allows attackers to obtain a JWT token that can generate signed AWS upload URLs for any store's...

Gitea versions before 1.22.3 contain an authorization bypass vulnerability where API tokens with scope limited to public resources can improperly acce...

This vulnerability allows authenticated group manager users in Galette to bypass intended restrictions on Contributions and Transactions functionality...

The YoSmart YoLink MQTT broker has insufficient authorization controls that allow cross-account attacks. Attackers can remotely operate any YoLink use...

A vulnerability in MySQL Server's optimizer component allows high-privileged attackers with network access to cause denial of service by crashing or h...

This vulnerability in Oracle MySQL Server's Components Services allows high-privileged attackers with network access to cause denial of service by cra...

This vulnerability allows deploy keys to push code to archived GitLab repositories, bypassing intended access controls. It affects GitLab Community Ed...

This vulnerability allows remote authenticated administrators to bypass firmware integrity checks on Synology BC500 and TC500 cameras. Attackers could...

This CVE describes an incorrect authorization vulnerability in Drupal Canvas that allows forceful browsing (unauthorized access to restricted function...

This vulnerability allows delegated granular administration users with 'Edit Other Users' permission to modify system administrator accounts in Matter...

OvalEdge versions 5.2.8.0 and earlier contain a privilege escalation vulnerability where authenticated users with OE_ADMIN role privileges can assign ...