Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-266

CWE-266

Incorrect Privilege Assignment

Parent: CWE-269 - Improper Privilege Management

A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.

814 vulnerabilities with CWE-266

CVE-2026-2563 MEDIUM

JingDong JD Cloud Box AX6600 <4.5.1.r4533 - Remote Privilege Escala...

CVE-2026-2562 MEDIUM

JingDong JD Cloud Box AX6600 <4.5.1.r4533 - Remote Privilege Escala...

CVE-2026-2561 MEDIUM

JingDong JD Cloud Box AX6600 <4.5.1.r4533 - Remote Privilege Escala...

CVE-2026-2549 HIGH

LibrarySystem 图书馆管理系统 <1.1.1 - Auth Bypass

CVE-2026-2141 MEDIUM

WuKongOpenSource WukongCRM <11.3.3 - Auth Bypass

CVE-2026-2209 MEDIUM

Wekan < 8.19 - Improper Authorization

CVE-2026-2206 MEDIUM

Wekan < 8.21 - Improper Access Control

CVE-2026-2109 MEDIUM

jsbroks COCO Annotator <0.11.1 - Auth Bypass

CVE-2026-2107 MEDIUM

Yeqifu Warehouse < 2025-10-06 - Improper Authorization

CVE-2026-2106 MEDIUM

Yeqifu Warehouse < 2025-10-06 - Improper Authorization

CVE-2026-2105 MEDIUM

Yeqifu Warehouse < 2025-10-06 - Improper Authorization

CVE-2026-2079 MEDIUM

Yeqifu Warehouse < 2025-10-06 - Improper Authorization

CVE-2026-2078 MEDIUM

Yeqifu Warehouse < 2025-10-06 - Improper Authorization

CVE-2026-2077 MEDIUM

yeqifu - Privilege Escalation

CVE-2026-2076 MEDIUM

Yeqifu Warehouse < 2025-10-06 - Improper Authorization

CVE-2026-2075 MEDIUM

Yeqifu Warehouse < 2025-10-06 - Improper Access Control

CVE-2026-2015 MEDIUM

Portabilis i-Educar <2.10 - Privilege Escalation

CVE-2026-2010 MEDIUM

Sanluan PublicCMS <4.0-6.202506.d - Privilege Escalation

CVE-2026-2009 MEDIUM

SourceCodester Gas Agency Management System 1.0 - Info Disclosure

CVE-2026-1964 MEDIUM

WeKan <8.20 - Info Disclosure

CVE-2026-1963 MEDIUM

WeKan <8.20 - Info Disclosure

CVE-2026-1962 MEDIUM

WeKan <8.20 - Info Disclosure

CVE-2026-1898 MEDIUM

WeKan <8.20 - Info Disclosure

CVE-2026-1896 MEDIUM

WeKan <8.20 - Improper Access Controls

CVE-2026-1895 MEDIUM

WeKan <8.20 - Improper Access Controls

Previous Page 5 of 33 Next

Details

Vulnerabilities 814

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy