Search

Blog Stats Labs CLI MCP API Limits About Privacy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Blog Statistics Labs CLI Tool MCP Server API Documentation Rate Limits About Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-266

CWE-266

Incorrect Privilege Assignment

Parent: CWE-269 - Improper Privilege Management

A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.

739 vulnerabilities with CWE-266

CVE-2026-3817 MEDIUM

Patients Waiting Area Queue 1.0 - Auth Bypass

CVE-2026-3796 MEDIUM

Qi-ANXIN QAX Virus Removal - Privilege Escalation

CVE-2026-3764 HIGH

SourceCodester Client DBMS 1.0 - Auth Bypass

CVE-2026-3762 HIGH

SourceCodester CDMS 1.0/3.1 - Auth Bypass

CVE-2026-3761 MEDIUM

SourceCodester Client DBMS 1.0 - Auth Bypass

CVE-2026-3738 MEDIUM

SourceCodester Pet Grooming 1.0 - Auth Bypass

CVE-2026-3737 MEDIUM

SourceCodester Pet Grooming 1.0 - Auth Bypass

CVE-2026-3734 HIGH

SourceCodester Client DBMS 1.0 - Auth Bypass

CVE-2026-3724 MEDIUM

Patients Waiting Area Queue 1.0 - Auth Bypass

CVE-2026-3675 MEDIUM

Freedom Factory dGEN1 <20260221 - Auth Bypass

CVE-2026-3674 MEDIUM

Freedom Factory dGEN1 <20260221 - Auth Bypass

CVE-2026-3671 LOW

Freedom Factory dGEN1 <20260221 - Auth Bypass

CVE-2026-3670 MEDIUM

Freedom Factory dGEN1 <=20260221 - Privilege Escalation

CVE-2026-3669 MEDIUM

Freedom Factory dGEN1 <20260221 - Privilege Escalation

CVE-2026-3668 LOW

Freedom Factory dGEN1 <=20260221 - Auth Bypass

CVE-2026-3667 MEDIUM

Freedom Factory dGEN1 <20260221 - Privilege Escalation

CVE-2026-27983 CRITICAL

LMS Elementor Pro <=1.0.4 - Privilege Escalation

CVE-2026-27541 HIGH

Wholesale Suite <=2.2.6 - Privilege Escalation

CVE-2026-24963 HIGH

Amelia ameliabooking <=1.2.38 - Privilege Escalation

CVE-2026-21425 MEDIUM

Dell PowerScale OneFS <9.10.1.6/9.11.0.0-9.12.0.1 - Privilege Escal...

CVE-2025-15597 MEDIUM

Dataease SQLBot <1.4.0 - Auth Bypass

CVE-2026-0871 MEDIUM

Keycloak - Privilege Escalation

CVE-2026-3268 MEDIUM

psi-probe PSI Probe <=5.3.0 - Auth Bypass

CVE-2026-3265 MEDIUM

go2ismail Free-CRM - Auth Bypass

CVE-2026-3263 MEDIUM

Asp.Net-Core-Inventory-Order-Management-System <9.20250118 - Auth B...

Page 1 of 30 Next

Details

Vulnerabilities 739

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy