Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-266

CWE-266

Incorrect Privilege Assignment

Parent: CWE-269 - Improper Privilege Management

A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.

926 vulnerabilities with CWE-266

CVE-2025-0783 MEDIUM

Pankajindevops <20241113 - Info Disclosure

CVE-2025-23528 HIGH

Wouter Dijkstra DD Roles <4.1 - Privilege Escalation

CVE-2025-0484 HIGH

Fanli2012 native-php-cms 1.0 - Auth Bypass

CVE-2025-22736 HIGH

WPExperts User Management <1.2 - Privilege Escalation

CVE-2025-0206 MEDIUM

code-projects Online Shoe Store 1.0 - Info Disclosure

CVE-2024-32009 HIGH

Spectrum Power 4 <V4.70 SP12 Update 2 - Privilege Escalation

CVE-2024-58273 HIGH

Nagios Log Server < 2024R1.0.2 - Local Privilege Escalation from Apache User to Root

CVE-2024-49731 MEDIUM

Android - Local Privilege Escalation via Telemetry Opt-In Settings Corruption

CVE-2024-32444 CRITICAL

InspiryThemes RealHomes <4.3.6 - Privilege Escalation

CVE-2024-12303 MEDIUM

GitLab 17.7-18.0.5, 18.1-18.1.3, 18.2-18.2.1 - Authenticated Incorrect Privilege Assignment via User Invitation

CVE-2024-51800 CRITICAL

Favethemes Homey <2.4.1 - Privilege Escalation

CVE-2024-49561 HIGH

Dell SmartFabric OS10 Software - Privilege Escalation

CVE-2024-55570 MEDIUM

Cubro EXA48200 <20231025055018 - Privilege Escalation

CVE-2024-8420 CRITICAL

DHVC Form <2.4.7 - Privilege Escalation

CVE-2024-56000 CRITICAL

SeventhQueen K Elements <5.4.0 - Privilege Escalation

CVE-2024-12213 CRITICAL

Apusthemes Superio < 1.2.76 - Incorrect Privilege Assignment

CVE-2024-13421 CRITICAL

The Real Estate 7 WordPress theme - Privilege Escalation

CVE-2024-40591 HIGH

Fortinet FortiOS <7.6.0, 7.4.0-7.4.4, 7.2.0-7.2.9 - Privilege Escal...

CVE-2024-49348 MEDIUM

IBM Cloud Pak for Business Automation 18.0.0-22.0.2 - Incorrect Privilege Assignment via Task Reassignment

CVE-2024-57967 MEDIUM

CyberArk Privileged Access Manager Self-Hosted <14.4 - Privilege Es...

CVE-2024-43333 HIGH

NotFound Admin and Site Enhancements (ASE) Pro <7.6.2.1 - Privilege...

CVE-2024-46974 HIGH

Software <version> - Info Disclosure

CVE-2024-35122 LOW

IBM i 7.2-7.5 - Unauthenticated Local Denial of Service via Referential Constraint Configuration

CVE-2024-51888 CRITICAL

Homey Login Register <2.4.0 - Privilege Escalation

CVE-2024-32555 CRITICAL

NotFound Easy Real Estate <2.2.6 - Privilege Escalation

Previous Page 27 of 38 Next

Details

Vulnerabilities 926

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy